logo

blog

My little blog can’t be this cute!
commit: d3294c1f492c209376613c82abf4f3ac211b739f
parent: 4d38e624a402df82b0aa9d01cace00069a620a13
Author: Haelwenn (lanodan) Monnier <contact@hacktivis.me>
Date:   Wed,  9 Jan 2019 04:10:18 +0100

[Article] I’m removing defaults to eternal cryptographic signatures

Diffstat:

Aarticles/I’m removing defaults to eternal cryptographic signatures.shtml13+++++++++++++
Aarticles/I’m removing defaults to eternal cryptographic signatures.xhtml14++++++++++++++
Mfeed.atom11+++++++++++
Mhome.shtml1+
4 files changed, 39 insertions(+), 0 deletions(-)

diff --git a/articles/I’m removing defaults to eternal cryptographic signatures.shtml b/articles/I’m removing defaults to eternal cryptographic signatures.shtml @@ -0,0 +1,13 @@ +<!DOCTYPE html> +<html lang="en"> + <head> +<!--#include file="/templates/head.shtml" --> + <title>I’m removing defaults to eternal cryptographic signatures — Cyber-home of lanodan</title> + </head> + <body> +<!--#include file="/templates/en/nav.shtml" --> +<!--#include file="/articles/I’m removing defaults to eternal cryptographic signatures.xhtml"--> + <a href="/articles/I%E2%80%99m%20removing%20defaults%20to%20eternal%20cryptographic%20signatures">article only(plain XHTML)</a> +<!--#include file="/templates/en/footer.html" --> + </body> +</html> diff --git a/articles/I’m removing defaults to eternal cryptographic signatures.xhtml b/articles/I’m removing defaults to eternal cryptographic signatures.xhtml @@ -0,0 +1,14 @@ +<article xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> +<a href="/articles/I%E2%80%99m%20removing%20defaults%20to%20eternal%20cryptographic%20signatures"><h1>I’m removing defaults to ad-vitam-eternam cryptographic signatures</h1></a> +<h2>Quick Notes on how to</h2> +<ul> + <li>git: Remove commit.gpgSign (user-wide it’s <code>~/.gitconfig</code>, repo-wide it’s <code>.git/config</code> or <code>config</code> on bare repos). To strip existing commits run <code>git filter-branch</code> on the repositories.</li> + <li>Email: Disable OpenPGP Signatures in your client if you did (also avoid Protonmail), make sure DKIM is non-existent, you may have to self-host your email</li> + <li>Fediverse: Move away from Mastodon and use something like Pleroma, which doesn’t have JSON-LD Signatures.</li> + <li>XMPP: Not sure, I’ll check later on how OTRv3/v4 and OMEMO works</li> +</ul> +<h2>Why?</h2> +<p>It’s something that weirdly doesn’t seems very popular in cryptonerds circles. Long-term signatures in a computer world basically is that everything that you send can and will be used against you and people you interacted with or wrote about and there is absolutely no deniability about it.</p> +<p>For example with DKIM: The content of the message is known to not be modified and to have been send by the right provider. What is required? The email and a DNS record (which is usually not changed). No interception whatsover is required. Also this standard absolutely doesn’t help against receiving unwanted messages (aka SPAM), so in my opinion it’s a waste of human time(configuration) and computing power.</p> +<p>Did you ever send a message that can be used against you or someone else? Probably (I surely did, please do not continue on this). Also if it can’t be used against you right now, it might be later.</p> +</article> diff --git a/feed.atom b/feed.atom @@ -10,6 +10,17 @@ </author> <entry> + <title>I’m removing defaults to eternal cryptographic signatures</title> + <link rel="alternate" type="text/html" href="/articles/I%E2%80%99m%20removing%20defaults%20to%20eternal%20cryptographic%20signatures"/> + <id>https://hacktivis.me/articles/I%E2%80%99m%20removing%20defaults%20to%20eternal%20cryptographic%20signatures</id> + <published>2019-01-09T03:05:54Z</published> + <updated>2019-01-09T03:05:54Z</updated> + <content type="xhtml"><div> +<!--#include file="/articles/I’m removing defaults to eternal cryptographic signatures.xhtml"--> + </div></content> + </entry> + + <entry> <title>Email to graphics-dev@chromium.org about nouveau blacklisting</title> <link rel="alternate" type="text/html" href="/articles/Email%20to%20graphics-dev@chromium.org%20about%20nouveau%20blacklisting"/> <id>https://hacktivis.me/articles/Email%20to%20graphics-dev@chromium.org%20about%20nouveau%20blacklisting</id> diff --git a/home.shtml b/home.shtml @@ -6,6 +6,7 @@ </head> <body> <!--#set var="transPageUrl" value='accueil' --><!--#set var="feedURL" value='/feed.atom'--><!--#include file="templates/en/nav.shtml" --> +<!--#include file="/articles/I’m removing defaults to eternal cryptographic signatures.xhtml"--> <!--#include file="/articles/Email to graphics-dev@chromium.org about nouveau blacklisting.xhtml"--> <!--#include file="/articles/Few updates about this website.xhtml"--> <!--#include file="/articles/My issue with Github (and Microsoft buying it).xhtml"-->