logo

blog

My little blog can’t be this cute! git clone https://hacktivis.me/git/blog.git
commit: 166ac5f2da0df74e6055d1e2eeb1d94260f0c3ae
parent 8919ebde36ba4b82f4556ea65691b3ca18d63a02
Author: Haelwenn (lanodan) Monnier <contact@hacktivis.me>
Date:   Wed, 17 Apr 2019 09:18:28 +0200

articles/Pretty Bad Privacy: Add #keybase for linking

Diffstat:

Marticles/Pretty Bad Privacy.xhtml2+-
Mfeed.atom2+-
2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/articles/Pretty Bad Privacy.xhtml b/articles/Pretty Bad Privacy.xhtml @@ -134,7 +134,7 @@ Compression: Uncompressed, ZIP, ZLIB, BZIP2 <p>There is no forward secrecy</p><!-- FIXME: seems to be for online apps or similar, not email; to be verified --> <h2>OpenPGP in real life</h2> <p>Real Name policy and other stuff that should be optionnal in the Public Key Verification process (An ID card? Seriously?).</p> -<h2>Bonus: Keybase is a fuck</h2> +<h2 id="keybase">Bonus: Keybase is a fuck</h2> <p>Keybase is what you get when you want crypto (just the math), but you do not care about security (they are called secrets for a reason) or privacy (social-media with a cryptographically verified graph that lives forever…).</p> <ul> <li>You are encouraged to upload your private keys to them, with <a href="https://keybase.io/triplesec">their own algorithm</a>) and it is hard to revoke (Please revoke your key and create another): <a href="https://github.com/keybase/keybase-issues/issues/160">Uploading private keys puts users at risk, keybase/keybase-issues#160</a>, <a href="https://github.com/keybase/keybase-issues/issues/731">Can't revoke the proof from web, keybase/keybase-issues#731</a> (note: even after revocation it could still be verified, revocation being advisory), <a href="https://github.com/keybase/keybase-issues/issues/1946">GPG smartcard security bypassed by delegated private key, keybase/keybase-issues#1946</a>, <a href="https://github.com/keybase/keybase-issues/issues/1912">How to export private key from keybase with API or kbpgp.js?, keybase/keybase-issues#1912</a></li> diff --git a/feed.atom b/feed.atom @@ -36,7 +36,7 @@ <link rel="alternate" type="text/html" href="/articles/Pretty%20Bad%20Privacy"/> <id>https://hacktivis.me/articles/Pretty%20Bad%20Privacy</id> <published>2019-03-07T01:00:04Z</published> - <updated>2019-04-17T07:06:17Z</updated> + <updated>2019-04-17T07:17:40Z</updated> <content type="xhtml"><div xmlns="http://www.w3.org/1999/xhtml" xml:lang="en"> <!--#include file="/articles/Pretty Bad Privacy.xhtml"--> </div></content>