Many organizations have regulations that required to encrypt logs and store it in a secure manner to ensure the privacy and security of customer data.| SysOpsTechnix
I'm too lazy to look for it, but the key servers that made the sks pool are all gone.| Pensées
Usually, I work directly on my Mac, but sometimes, I have to log into it from another system. By default (at least on MacPorts), the GnuPG agent will default to using the graphical pinentry. Normally, this is good, but if… Continue reading → The post Common issues with using GnuPG over SSH from a Mac appeared first on the sporks space.| the sporks space
With the release of Libntlm version 1.8 the release tarball can be reproduced on several distributions. We also publish a signed minimal source-only tarball, produced by git-archive which is the same format used by Savannah, Codeberg, GitLab, GitHub and others. Continue reading Reproducible and minimal source-only tarballs→| Simon Josefsson's blog
I’ve used hardware-backed OpenPGP keys since 2006 when I imported newly generated rsa1024 subkeys to a FSFE Fellowship card. This worked well for several years, and I recall buying more ZeitControl cards for multi-machine usage and backup purposes. As a Continue reading OpenPGP master key on Nitrokey Start→| Simon Josefsson's blog
The Debian operating system is what I have been using on my main computer for what is probably around 20 years. I am now in the process of installing the hopefully soon released Debian 11 “bullseye” on my Lenovo X201 Continue reading OpenPGP smartcard with GNOME on Debian 11 Bullseye→| Simon Josefsson's blog
Below I describe how to generate an OpenPGP key and import its subkeys to a FST-01G device running Gnuk. See my earlier post on planning for my new OpenPGP key and the post on preparing the FST-01G to run Gnuk. Continue reading Offline Ed25519 OpenPGP key with subkeys on FST-01G running Gnuk→| Simon Josefsson's blog
The FST-01G device that you order from the FSF shop runs NeuG. To be able to use the device as a OpenPGP smartcard, you need to install Gnuk. While Niibe covers this on his tutorial, I found the steps a Continue reading Installing Gnuk on FST-01G running NeuG→| Simon Josefsson's blog
I have created a new OpenPGP key and will be transitioning away from my old key. If you have signed my old key, I would appreciate signatures on my new key as well. I have created a transition statement that Continue reading OpenPGP 2019 Key Transition Statement→| Simon Josefsson's blog
I’m the process of migrating to a new OpenPGP key. I have been using GnuPG with keys stored on external hardware (smartcards) for a long time, and I’m firmly committed to that choice. Algorithm wise, RSA was the best choice Continue reading Planning for a new OpenPGP key→| Simon Josefsson's blog
I installed Debian 9.0 “Stretch” on my Lenovo X201 laptop today. Installation went smooth, as usual. GnuPG/SSH with an OpenPGP smartcard — I use a YubiKey NEO — does not work out of the box with GNOME though. I wrote Continue reading OpenPGP smartcard under GNOME on Debian 9.0 Stretch→| Simon Josefsson's blog
Back in early 2012 I had been helping with system administration of a number of Debian/Ubuntu-based machines, and the odd Solaris machine, for a couple of years at $DAYJOB. We had a combination of hand-written scripts, documentation notes that we Continue reading Cosmos – A Simple Configuration Management System→| Simon Josefsson's blog
The combination of GnuPG and a OpenPGP smartcard has been implemented and working for almost a decade. I recall starting to use it when I received a FSFE Fellowship card in 2006. Today I’m using a YubiKey NEO. Sadly there Continue reading OpenPGP Smartcards and GNOME→| Simon Josefsson's blog
After I moved to a new OpenPGP key (see key transition statement) I have received comments about the short life length of my new key. When I created the key (see my GnuPG setup) I set it to expire after Continue reading The Case for Short OpenPGP Key Validity Periods→| Simon Josefsson's blog
I have moved to a new OpenPGP key. There are many tutorials and blog posts on GnuPG key generation around, but none of them matched exactly the setup I wanted to have. So I wrote down the steps I took, Continue reading Offline GnuPG Master Key and Subkeys on YubiKey NEO Smartcard→| Simon Josefsson's blog
I have created a new OpenPGP key 54265e8c and will be transitioning away from my old key. If you have signed my old key, I would appreciate signatures on my new key as well. I have created a transition statement Continue reading OpenPGP Key Transition Statement→| Simon Josefsson's blog
I’m in the process of moving to a new OpenPGP key, and I want to include a small JPEG image of myself in it. The OpenPGP specification describes, in section 5.12.1 of RFC 4880, how an OpenPGP packet can contain Continue reading Creating a small JPEG photo for your OpenPGP key→| Simon Josefsson's blog
I have several backup servers that run the excellent rsnapshot software, which uses Secure Shell (SSH) for remote access. The SSH private key of the backup server can be a weak link in the overall security. To see how it Continue reading Unattended SSH with Smartcard→| Simon Josefsson's blog
OpenPGP key transition| anarc.at
I was not able to describe SOS itself accurately in ECC in OpenPGP by SOS.| www.gniibe.org
In this article, I try to explain a specific way to improve current| www.gniibe.org
In this bug report, I describe how we can improve OpenPGP| www.gniibe.org