vanitasvitae<p>Just figured out, that the massive performance hit my <a href="https://fosstodon.org/tags/PGPainless" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGPainless</span></a> test suite was suffering since I started to port to a newer BC version was caused by the default S2K iteration count being bumped to 0xff instead of 0x60.<br>This had caused the runtime of the test suite to rise to 7 minutes compared to ~1 minute.</p><p>I decided to dial down the default value again, but make it customizable :D</p><p><a href="https://fosstodon.org/tags/openpgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openpgp</span></a></p>
muenchen.social ist Teil des dezentralen sozialen Netzwerks, das von Mastodon betrieben wird.
Hallo auf muenchen.social
Dies ist eine deutschsprachige Mastodon Instanz für München zum tröten, neue Leute kennenlernen, sich auszutauschen und Spass zu haben.
Verwaltet von:
Serverstatistiken:
1,3 Tsdaktive Profile
Mehr erfahren
muenchen.social: Über · Profilverzeichnis · Datenschutzerklärung
Mastodon: Über · App herunterladen · Tastenkombinationen · Quellcode anzeigen · v4.1.22
Delta Chat<p>We are not aware of other FOSS development teams that have as extensive knowledge, both theoretical and practical, about <a href="https://chaos.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>email</span></a> and <a href="https://chaos.social/tags/openpgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openpgp</span></a> and regularly release across all platforms for users world wide ... except for <a href="https://chaos.social/tags/protonmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>protonmail</span></a> with whose technical and security experts we discuss regularly. They are the other major game in town doing pervasive email encryption after all. Did you know that Proton's and delta's VCards are compatible across ecosystems and establish immediate encryption?</p>
Delta Chat<p><span class="h-card"><a href="https://jura.social/@mathilde" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mathilde</span></a></span> <a href="https://chaos.social/tags/chatmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>chatmail</span></a> server users don't have these problems because they don't even need to know their password or email address. Messages in delta chat are stored locally and the server only stores them for a limited time, up to 20 days by default, so all devices have a chance to download the message. Blocklists are also not used, the only requirements are <a href="https://chaos.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DKIM</span></a> signature and <a href="https://chaos.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> encryption.</p>
Keith Nasman<p>Remember the old days with key signing parties? I never really got into that but I think with all the "AI" bots we are going to get to a place where we need to have trust networks built on cryptographic keys to filter out the crap.</p><p>Note to self: Set up public key and share it.</p><p><a href="https://fosstodon.org/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> <a href="https://fosstodon.org/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSSL</span></a></p>
Neustradamus :xmpp: :linux:<p><a href="https://mastodon.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GnuPG</span></a> 2.5.5 (dev) has been released (<a href="https://mastodon.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> / <a href="https://mastodon.social/tags/GPG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GPG</span></a> / <a href="https://mastodon.social/tags/GNUPrivacyGuard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GNUPrivacyGuard</span></a> / <a href="https://mastodon.social/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGP</span></a> / <a href="https://mastodon.social/tags/PrettyGoodPrivacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PrettyGoodPrivacy</span></a> / <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> / <a href="https://mastodon.social/tags/Gpg4win" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Gpg4win</span></a>) <a href="https://gnupg.org/" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">gnupg.org/</span><span class="invisible"></span></a></p>
Delta Chat<p>The downside of our project approach was that we often got experts being very dismissive on re-using email and <a href="https://chaos.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> ... and there still is some opposition which often subsides when actually trying <a href="https://chaos.social/tags/deltachat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>deltachat</span></a> and <a href="https://chaos.social/tags/chatmail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>chatmail</span></a>, looking at security audits and our strong usable security focus. </p><p>There may also be surprising upsides. The UK "Online Safety Bill" which attacks end-to-end encryption integrity seems to not apply for ... e-mail. Because everyone knows, e-mail is unencrypted, right? :)</p>
Pirate Praveen<p>Has anyone here on <a href="https://social.masto.host/tags/fedi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fedi</span></a> figured out the correct recipe for dealing with <a href="https://social.masto.host/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a>, <a href="https://social.masto.host/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DMARC</span></a> and <a href="https://social.masto.host/tags/mailman" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mailman</span></a> ?</p><p>The problem, by default mailman will modify messages and this will break the dkim signature.<br><a href="https://gitlab.com/mailman/mailman/-/issues/1079" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gitlab.com/mailman/mailman/-/i</span><span class="invisible">ssues/1079</span></a></p><p>Mailman provides two DMARC mitigation options (other option is reject or discard which is not useful in this case).</p><p>1. Replace the from address with list address<br>2. Wrap original message in an envelope</p><p>thunderbird flags 1 and fails 2.<br><a href="https://social.masto.host/tags/askfedi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>askfedi</span></a> <a href="https://social.masto.host/tags/gnupg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>gnupg</span></a> <a href="https://social.masto.host/tags/gpg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>gpg</span></a> <a href="https://social.masto.host/tags/thunderbird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>thunderbird</span></a></p>
Em :official_verified:<p>New Privacy Guides article 🔑✨<br>by me: </p><p>If you are using a YubiKey, </p><p>you might get in some situations where you need to reset your key to factory default, and/or set up a backup of it on a spare key.</p><p>This tutorial will guide you <br>through each step to reset and back up your YubiKey successfully, with clear instructions and plenty of visual support.</p><p>I hope you find it helpful!</p><p><a href="https://www.privacyguides.org/articles/2025/03/06/yubikey-reset-and-backup/" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">privacyguides.org/articles/202</span><span class="invisible">5/03/06/yubikey-reset-and-backup/</span></a></p><p><a href="https://infosec.exchange/tags/PrivacyGuides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PrivacyGuides</span></a> <a href="https://infosec.exchange/tags/Privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Privacy</span></a> <a href="https://infosec.exchange/tags/Yubico" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Yubico</span></a> <a href="https://infosec.exchange/tags/YubiKey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>YubiKey</span></a> <a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://infosec.exchange/tags/OTP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OTP</span></a> <a href="https://infosec.exchange/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> <a href="https://infosec.exchange/tags/Encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Encryption</span></a> <a href="https://infosec.exchange/tags/MFA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MFA</span></a></p>
Lars Wirzenius<p>I've made release 0.3.0 of sopass, my command line password manager that uses a Stateless OpenPGP implementation for cryptography.</p><p>* configuration file<br>* add value from named file or stdin<br>* default to rsop<br>* manual page, built-in help</p><p><a href="https://sopass.liw.fi/" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">sopass.liw.fi/</span><span class="invisible"></span></a></p><p><a href="https://toot.liw.fi/tags/sopass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sopass</span></a> <a href="https://toot.liw.fi/tags/pass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pass</span></a> <a href="https://toot.liw.fi/tags/passwordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordManager</span></a> <a href="https://toot.liw.fi/tags/commandLine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>commandLine</span></a> <a href="https://toot.liw.fi/tags/cli" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cli</span></a> <a href="https://toot.liw.fi/tags/openpgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openpgp</span></a> <a href="https://toot.liw.fi/tags/statelessOpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>statelessOpenPGP</span></a> <a href="https://toot.liw.fi/tags/sop" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sop</span></a></p>
Lars Wirzenius<p>I made a couple of changes to sopass, my command line password manager that uses a Stateless OpenPGP implementation for cryptography.</p><p>* It no longer creates the configuration file.<br>* It has built-in help for all sub-commands, options, and other command line arguments.</p><p>There is also a rudimentary manual page.</p><p><a href="https://sopass.liw.fi/" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">sopass.liw.fi/</span><span class="invisible"></span></a></p><p><a href="https://toot.liw.fi/tags/paswordManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>paswordManager</span></a> <a href="https://toot.liw.fi/tags/sopass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sopass</span></a> <a href="https://toot.liw.fi/tags/pass" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pass</span></a> <a href="https://toot.liw.fi/tags/commandLine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>commandLine</span></a> <a href="https://toot.liw.fi/tags/cli" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cli</span></a> <a href="https://toot.liw.fi/tags/openpgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openpgp</span></a> <a href="https://toot.liw.fi/tags/cryptography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cryptography</span></a></p>
l<p><span class="h-card"><a href="https://chaos.social/@sten" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>sten</span></a></span> <br>> Sign-then-encrypt is also a bit dodgy when combined with certain cipher modes.</p><p>You probably refer to "MAC-then-encrypt" vulnerabilities (<a href="https://moxie.org/2011/12/13/the-cryptographic-doom-principle.html" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">moxie.org/2011/12/13/the-crypt</span><span class="invisible">ographic-doom-principle.html</span></a>). <a href="https://fosstodon.org/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> encryption and signatures are not on the level where you need to think about such low-level details. OpenPGP encrypted packets (Symmetrically Encrypted and Integrity Protected Data Packet) add integrity protection after encryption, so encrypted packets are not malleable.</p>
l<p><span class="h-card"><a href="https://chaos.social/@sten" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>sten</span></a></span> <br><a href="https://fosstodon.org/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> messages are normally signed then encrypted. E.g. RFC 4880 says "OpenPGP implementations SHOULD compress the message after applying the signature but before encryption.".</p><p>This is what <span class="h-card"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>delta</span></a></span> does.</p><p>This is also written down explicitly in <a href="https://www.ietf.org/archive/id/draft-ietf-lamps-e2e-mail-guidance-17.html#name-encryption-outside-signatur" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">ietf.org/archive/id/draft-ietf</span><span class="invisible">-lamps-e2e-mail-guidance-17.html#name-encryption-outside-signatur</span></a></p><p>But you can do whatever suits your application, OpenPGP is used not only for message encryption.</p>
Rivane Rasetiansyah<p>Initializing a new project - Interplanetary Markdown. Might explore a <a href="https://fosstodon.org/tags/Web3" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Web3</span></a> (off-chain) approach later for a better experience, but for now, keeping it simple with good old <a href="https://fosstodon.org/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a>.</p><p>A censorship-resistant <a href="https://fosstodon.org/tags/Markdown" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Markdown</span></a> publishing platform, enabling seamless content distribution. Powered by the Interplanetary File System (<a href="https://fosstodon.org/tags/IPFS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IPFS</span></a>), ensuring <a href="https://fosstodon.org/tags/blogs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>blogs</span></a>, <a href="https://fosstodon.org/tags/articles" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>articles</span></a>, and other written content remain accessible and verifiable across the distributed web.</p><p><a href="https://github.com/rvnrstnsyh/cupoftea" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">github.com/rvnrstnsyh/cupoftea</span><span class="invisible"></span></a></p>
boredsquirrel<p><span class="h-card"><a href="https://fosstodon.org/@libreoffice" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>libreoffice</span></a></span> </p><p>The <a href="https://tux.social/tags/Libreoffice" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Libreoffice</span></a> Youtube channel is posting a lot of interesting talks from the "Libreoffice and <a href="https://tux.social/tags/Opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Opensource</span></a> Conference 2024"</p><p>Some of them:</p><p><a href="https://tux.social/tags/LuxChat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LuxChat</span></a> for Governments: <a href="https://www.youtube.com/watch?v=JXdMKaEXq0Q" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">youtube.com/watch?v=JXdMKaEXq0</span><span class="invisible">Q</span></a></p><p><a href="https://tux.social/tags/OpenDesk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenDesk</span></a> on <a href="https://tux.social/tags/OpenCode" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenCode</span></a>: <a href="https://www.youtube.com/watch?v=rVhAltODe-M" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">youtube.com/watch?v=rVhAltODe-</span><span class="invisible">M</span></a></p><p><a href="https://tux.social/tags/Education" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Education</span></a>: <a href="https://www.youtube.com/watch?v=V4fkWfuFXfo" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">youtube.com/watch?v=V4fkWfuFXf</span><span class="invisible">o</span></a></p><p><a href="https://tux.social/tags/Encrypted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Encrypted</span></a> and <a href="https://tux.social/tags/Signed" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Signed</span></a> Documents (UI, with <a href="https://tux.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> or <a href="https://tux.social/tags/x509" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>x509</span></a>): <a href="https://www.youtube.com/watch?v=W-qFr8tL-LE" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">youtube.com/watch?v=W-qFr8tL-L</span><span class="invisible">E</span></a></p><p><a href="https://tux.social/tags/Matrix" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Matrix</span></a> <a href="https://tux.social/tags/Luxembourg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Luxembourg</span></a></p>
Anthony Accioly<p>-----BEGIN PGP SIGNED MESSAGE-----<br>Hash: SHA256</p><p>Good afternoon, folks! Just a quick reminder: PGP isn't dead. Sign with pride!</p><p>Signed with my GPG key: 1BBD C23D 1853 255D 6415 D2EC 814E DF85 1AAB 370E</p><p><a href="https://accioly.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> <a href="https://accioly.social/tags/GPG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GPG</span></a> <a href="https://accioly.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://accioly.social/tags/Tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tech</span></a> <a href="https://accioly.social/tags/DigitalIdentity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DigitalIdentity</span></a> <a href="https://accioly.social/tags/SignYourCode" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SignYourCode</span></a><br>-----BEGIN PGP SIGNATURE-----</p><p>iHUEARYIAB0WIQTHaQ+iFRwfaXx+TxhjUbpCCVDiNAUCZ7cd5gAKCRBjUbpCCVDi<br>NOZSAPoDPFoZXKuxya98iY6nAV6hzgOghpqF/OtOVSW4qtEdMQEA3x/jqaD4R9vo<br>qi89wA4Hsd4KeqwTSQxKDECesI+W8QU=<br>=3gty<br>-----END PGP SIGNATURE-----</p>
/dev/LUGGuten Morgen Pinguine! Eine kleine Info / Status update \o/<br><br>Ein erster Meilenstein ist erreicht! Ich habe heute einen ersten tag (0.0.1) für libcxmpp erstellt. Es ist nicht viel, aber ein Anfang.<br><br><a href="https://devlug.de/social?t=libcxmpp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#libcxmpp</a> besteht aus einer kleinen Menge von <a href="https://devlug.de/social?t=gobject" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GObject</a> types. Diese sollen eine einfach zu verwendete Schnittstelle für Funktionen rundum <a href="https://devlug.de/social?t=xmpp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#XMPP</a> bereitstellen. Aktuell ist es möglich, dass sich ein Client mit einem XMPP Server verbindet, eine presence schickt. Den roster abfragt und einfach Nachrichten (type chat) senden und empfangen kann.<br><br>Hierfür habe ich eine Demo Implementierung im Projekt angelegt. Dies sieht dann wie folgt aus.<br><br><p>Loading Client Manager...<br>XMPP> connect<br>XMPP Connect - JID> demo@domain.tld<br>XMPP Connect - PWD> 123456<br>XMPP> Client has been connected with XMPP Server<br><br>XMPP> presence<br>XMPP> message<br>XMPP Message - JID> stefan@domain.tld<br>XMPP Message - Text> Hallo! Das ist ein Test :)<br>XMPP> Message from stefan@domain.tld/Coffein: Hallo. Die Nachricht ist angekommen.<br></p>Anwendungsdesign muss ich mir noch mal genauer überlegen. Der ersten Entwurf beinhaltet einen CM (Connection Manager). Der Connection Manager soll alle Accounts und Connections verwalten. Die Connection ist eine funktionale Sicht auf die XMPP Verbindung, währen der XMPP Wrapper die technische Implementierung via <a href="https://devlug.de/social?t=libstrophe" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#libstrophe</a> bereitstellt.<br><br>Der Client kann sich mit Signalen verbinden - <a href="https://devlug.de/social?t=signal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#signal</a> :-x<br><br><p>g_signal_connect_object(connection, "connected",<br> G_CALLBACK(cxmpp_connected), connection,<br> G_CONNECT_SWAPPED);<br><br>g_signal_connect_object(connection, "new-contact",<br> G_CALLBACK(new_contact), connection,<br> G_CONNECT_SWAPPED);<br><br>g_signal_connect_object(connection, "new-chat-message",<br> G_CALLBACK(new_chat_message), connection,<br> G_CONNECT_SWAPPED);<br></p>Ausblick für den nächsten Meilenstein<br><br>Als Backend solle eine <a href="https://devlug.de/social?t=sqlite" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sqlite</a> Datenbank verwendet werden. Verschlüsselung im ersten Schritt mit <a href="https://devlug.de/social?t=openpgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenPGP</a> <a href="https://devlug.de/social?t=ox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OX</a> via <a href="https://devlug.de/social?t=gnupg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GnuPG</a>. Ziel ist es, dass ich im ersten Schritt die Implementierung von <a href="https://devlug.de/social?t=xmppc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#xmppc</a> (ein XMPP command line client) auf <a href="https://devlug.de/social?t=libcxmpp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#libcxmpp</a> umstellen kann.<br><br>Code ist auf <a href="https://devlug.de/social?t=codeberg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Codeberg</a> <a href="https://codeberg.org/devLUG/libcxmpp" rel="nofollow noopener noreferrer" target="_blank">https://codeberg.org/devLUG/libcxmpp</a><br><br>Happy chatting!<br><br><a href="https://devlug.de/social?t=messenger" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Messenger</a> <a href="https://devlug.de/social?t=debian" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Debian</a> <a href="https://devlug.de/social?t=gnu" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GNU</a> <a href="https://devlug.de/social?t=linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://devlug.de/social?t=jabber" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Jabber</a><br>
chimbosonic<p>Introducing WKD Tester – a free, open-source tool for testing OpenPGP Web Key Directory implementations! I built it to help out with the Keyoxide project, making it easier to generate lookup URIs and discover keys on the fly. Check it out at <a href="https://wkd.chimbosonic.com" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">wkd.chimbosonic.com</span><span class="invisible"></span></a>.</p><p><a href="https://fosstodon.org/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> <a href="https://fosstodon.org/tags/WKD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WKD</span></a> <a href="https://fosstodon.org/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensource</span></a> <a href="https://fosstodon.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://fosstodon.org/tags/Keyoxide" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Keyoxide</span></a></p>
Delta Chat<p>Isn't it poetic and ironic that out of all possible time lines we are in one where <a href="https://chaos.social/tags/securejoin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>securejoin</span></a> <a href="https://chaos.social/tags/openpgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openpgp</span></a> protocols on top of the existing <a href="https://chaos.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>email</span></a> protocols offer the arguably most solidly scaling, useable, world-wide federated end-to-end encrypted messaging reality, safe against compromised <a href="https://chaos.social/tags/mitm" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mitm</span></a> servers? Hundreds of billions spend to create "the email successor" and here we are in 2025 .... <a href="https://chaos.social/tags/interoperable" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>interoperable</span></a> <a href="https://chaos.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>email</span></a> and <a href="https://chaos.social/tags/cryptography" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cryptography</span></a> as the tortoise looking at Achilles through the back mirror :)</p>
Todd A. Jacobs | Rubyist<p>I’m *trying* to like <a href="https://ruby.social/tags/Python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Python</span></a> again, but PEP-761 requires <a href="https://ruby.social/tags/sigstore" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sigstore</span></a>. <a href="https://ruby.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> key management has issues, but this requires trusting <a href="https://ruby.social/tags/openidconnect" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openidconnect</span></a> from <a href="https://ruby.social/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Google</span></a> & <a href="https://ruby.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a>. Plus there’s a stated design goal of supporting automated signatures from private keys held by <a href="https://ruby.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a>.</p><p>Easier? Probably. Safer? Probably not. Security is about trust and the required certificate authorities haven’t earned mine over the past 20 years. As always, YMMV.</p><p><a href="https://peps.python.org/pep-0761/" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="">peps.python.org/pep-0761/</span><span class="invisible"></span></a></p>
Kevin Karhan :verified:<p><span class="h-card"><a href="https://jorts.horse/@kobilacroix" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>kobilacroix</span></a></span> also <a href="https://infosec.space/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> is used as a means to identify espionage and manipulation attempts and enable quicjer fixing if security issues.</p><p>And that works not only for <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tor</span></a>, but <a href="https://infosec.space/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a>, <a href="https://infosec.space/tags/OpenSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSSL</span></a>, <a href="https://infosec.space/tags/OpenSSH" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSSH</span></a>, <a href="https://infosec.space/tags/OpenVPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenVPN</span></a>, <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a>, ...</p><p>In fact, <a href="https://infosec.space/tags/OpenBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenBSD</span></a>'s security is based upon <a href="https://infosec.space/tags/openness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openness</span></a>, <a href="https://infosec.space/tags/transparency" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>transparency</span></a> and <a href="https://infosec.space/tags/KISSprinciple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KISSprinciple</span></a>'d design.</p><p>Not to mention <a href="https://infosec.space/tags/Monero" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Monero</span></a> is really frustrating the U.S. Govt. (espechally IRS) because it is <a href="https://infosec.space/tags/FLOSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FLOSS</span></a> and with basically billions in value locked in, every cryptographer of every major state and non-state actor is trying to exploit it.</p><p>That's the strenght of <a href="https://infosec.space/tags/FOSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FOSS</span></a>:</p><p>With every commit and every line if cide beibg public, noone can get away with <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Govware</span></a>-<a href="https://infosec.space/tags/Backdoors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Backdoors</span></a> ob most stuff as they do constantly with <a href="https://infosec.space/tags/CCSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CCSS</span></a>!</p><p>Cuz you can be shure everytime someone from NSA, CIA, GAFAMs, Huawei, etc. even commits a single line to linux or requests a merge there are countless people literally waiting to find a reason to say no and evidence it's a <a href="https://infosec.space/tags/backdoor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>backdoor</span></a> of some kind.</p>
EntdeckenLokalFöderiert
Melde dich an, um Profilen oder Hashtags zu folgen, Beiträge zu favorisieren, zu teilen und auf sie zu antworten. Du kannst auch von deinem Konto aus auf einem anderen Server interagieren.
AnmeldenKonto erstellenAktuelle Trends
#Fensterfreitag217 Profile in 2 Tagen
#WindowFriday87 Profile in 2 Tagen
#piday231 Profile in 2 Tagen
Zum Hochladen hereinziehen