101010.pl

James Fine Art (.ie)G. Piano Fire is a watercolour painting, initially created to have colour represent the emotion of piano music. As the flow and colour could be interpreted as flames, it was named Piano Fire.[ Prints : <a href="https://james-mccormack.pixels.com/featured/piano-fire-james-mccormack.html?utm_source=mastodon&utm_medium=social" rel="nofollow noopener" translate="no" target="_blank">https://james-mccormack.pixels.com/featured/piano-fire-james-mccormack.html?utm_source=mastodon&utm_medium=social</a> ]<a href="https://mastodon.ie/tags/pianofire" class="mention hashtag" rel="nofollow noopener" target="_blank">#pianofire</a> <a href="https://mastodon.ie/tags/music" class="mention hashtag" rel="nofollow noopener" target="_blank">#music</a> <a href="https://mastodon.ie/tags/key" class="mention hashtag" rel="nofollow noopener" target="_blank">#key</a> <a href="https://mastodon.ie/tags/piano" class="mention hashtag" rel="nofollow noopener" target="_blank">#piano</a> <a href="https://mastodon.ie/tags/fire" class="mention hashtag" rel="nofollow noopener" target="_blank">#fire</a> <a href="https://mastodon.ie/tags/pianoforte" class="mention hashtag" rel="nofollow noopener" target="_blank">#pianoforte</a> <a href="https://mastodon.ie/tags/flames" class="mention hashtag" rel="nofollow noopener" target="_blank">#flames</a> <a href="https://mastodon.ie/tags/music" class="mention hashtag" rel="nofollow noopener" target="_blank">#music</a> <a href="https://mastodon.ie/tags/notes" class="mention hashtag" rel="nofollow noopener" target="_blank">#notes</a> <a href="https://mastodon.ie/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a> <a href="https://mastodon.ie/tags/ivories" class="mention hashtag" rel="nofollow noopener" target="_blank">#ivories</a> <a href="https://mastodon.ie/tags/buyintoart" class="mention hashtag" rel="nofollow noopener" target="_blank">#buyintoart</a> <a href="https://mastodon.ie/tags/MastoArt" class="mention hashtag" rel="nofollow noopener" target="_blank">#MastoArt</a> <a href="https://mastodon.ie/tags/MastoDaoine" class="mention hashtag" rel="nofollow noopener" target="_blank">#MastoDaoine</a> <a href="https://mastodon.ie/tags/FediGiftShop" class="mention hashtag" rel="nofollow noopener" target="_blank">#FediGiftShop</a>

IT NewsBuilding a Cyberpunk Modular Keyboard - Perhaps you have a tilt towards glowing cyberpunk peripherals. Perhaps you’ve been... - <a href="https://hackaday.com/2025/06/07/building-a-cyberpunk-modular-keyboard/" rel="nofollow noopener" translate="no" target="_blank">https://hackaday.com/2025/06/07/building-a-cyberpunk-modular-keyboard/</a> <a href="https://schleuss.online/tags/peripheralshacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#peripheralshacks</a> <a href="https://schleuss.online/tags/splitkeyboard" class="mention hashtag" rel="nofollow noopener" target="_blank">#splitkeyboard</a> <a href="https://schleuss.online/tags/keyboard" class="mention hashtag" rel="nofollow noopener" target="_blank">#keyboard</a> <a href="https://schleuss.online/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a>

sheislaurence🧵 4/4: The <a href="https://mastodon.social/tags/Palestine" class="mention hashtag" rel="nofollow noopener" target="_blank">#Palestine</a> Solidarity <a href="https://mastodon.social/tags/demonstration" class="mention hashtag" rel="nofollow noopener" target="_blank">#demonstration</a> in <a href="https://mastodon.social/tags/London" class="mention hashtag" rel="nofollow noopener" target="_blank">#London</a> today marked 77 years since the <a href="https://mastodon.social/tags/Nakba" class="mention hashtag" rel="nofollow noopener" target="_blank">#Nakba</a> or 'great catastrophe' that saw 750k <a href="https://mastodon.social/tags/Palestinians" class="mention hashtag" rel="nofollow noopener" target="_blank">#Palestinians</a> forcibly displaced from their homes & land. Many Palestinians carry <a href="https://mastodon.social/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a> of their ancestral homes, or symbolic keys, dubbed 'key of return'. Seeing 'architects for Gaza' against the backdrop of the <a href="https://mastodon.social/tags/British" class="mention hashtag" rel="nofollow noopener" target="_blank">#British</a> Parliament made the contrast with the scale of destruction in <a href="https://mastodon.social/tags/Gaza" class="mention hashtag" rel="nofollow noopener" target="_blank">#Gaza</a> all the more obvious.

TechHelpKB.com 📚Millions of RSA encryption keys contain major flaws, making them vulnerable to attack. New research found around 1 in 172 of all certificates found online are susceptible to compromise through a mathematical attack.<a href="https://mastodon.social/tags/rsa" class="mention hashtag" rel="nofollow noopener" target="_blank">#rsa</a> <a href="https://mastodon.social/tags/encryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#encryption</a> <a href="https://mastodon.social/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a> <a href="https://mastodon.social/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://www.itpro.com/security/rsa-encryption-keys-vulnerability" rel="nofollow noopener" translate="no" target="_blank">https://www.itpro.com/security/rsa-encryption-keys-vulnerability</a>

Mad A. Argon :qurio:Huh... maybe someone should try to stop me interpreting <a href="https://is-a.cat/tags/ssh" class="mention hashtag" rel="nofollow noopener" target="_blank">#ssh</a> <a href="https://is-a.cat/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a> like star <a href="https://is-a.cat/tags/constellations" class="mention hashtag" rel="nofollow noopener" target="_blank">#constellations</a> and <a href="https://is-a.cat/tags/drawing" class="mention hashtag" rel="nofollow noopener" target="_blank">#drawing</a> creatures and objects of these? :blobcatjoy: Currently in intensive testing phase I create and destroy many VMs at work and I have almost infinite source of inspiration... :blobdevilsmile:

Jakub Steiner ⭐An absolute didactic marvel of a video on basic music theory. <a href="https://youtu.be/NgW3zUWVWnI?si=6hcp-6VL-1q9tUee" rel="nofollow noopener" translate="no" target="_blank">https://youtu.be/NgW3zUWVWnI?si=6hcp-6VL-1q9tUee</a><a href="https://mastodon.social/tags/music" class="mention hashtag" rel="nofollow noopener" target="_blank">#music</a> <a href="https://mastodon.social/tags/ratios" class="mention hashtag" rel="nofollow noopener" target="_blank">#ratios</a> <a href="https://mastodon.social/tags/intervals" class="mention hashtag" rel="nofollow noopener" target="_blank">#intervals</a> <a href="https://mastodon.social/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a> <a href="https://mastodon.social/tags/scales" class="mention hashtag" rel="nofollow noopener" target="_blank">#scales</a> <a href="https://mastodon.social/tags/theory" class="mention hashtag" rel="nofollow noopener" target="_blank">#theory</a>

Jim "Ham on a Bike"I'm a BIG Fan of Leg Straps for CW <a href="https://mastodon.radio/tags/MorseCode" class="mention hashtag" rel="nofollow noopener" target="_blank">#MorseCode</a> <a href="https://mastodon.radio/tags/paddles" class="mention hashtag" rel="nofollow noopener" target="_blank">#paddles</a> & <a href="https://mastodon.radio/tags/Keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#Keys</a>. Jonathan <a href="https://mastodon.radio/tags/KM4CFT" class="mention hashtag" rel="nofollow noopener" target="_blank">#KM4CFT</a> has come up with one that is perfect for my Mini <a href="https://mastodon.radio/tags/Putikeeg" class="mention hashtag" rel="nofollow noopener" target="_blank">#Putikeeg</a> <a href="https://mastodon.radio/tags/Straightkey" class="mention hashtag" rel="nofollow noopener" target="_blank">#Straightkey</a> <a href="https://mastodon.radio/tags/AmateurRadio" class="mention hashtag" rel="nofollow noopener" target="_blank">#AmateurRadio</a> <a href="https://mastodon.radio/tags/Hamradio" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hamradio</a> <a href="https://mastodon.radio/tags/POTA" class="mention hashtag" rel="nofollow noopener" target="_blank">#POTA</a> <a href="https://mastodon.radio/tags/SOTA" class="mention hashtag" rel="nofollow noopener" target="_blank">#SOTA</a> <a href="https://qrper.com/2025/02/new-antenna-and-leg-strap-from-km4cft/" rel="nofollow noopener" translate="no" target="_blank">https://qrper.com/2025/02/new-antenna-and-leg-strap-from-km4cft/</a>

Kevin Karhan :verified:<a href="https://chaos.social/@ck" class="u-url mention" rel="nofollow noopener" target="_blank">@ck</a> <a href="https://soc.hardwarepunk.de/profile/sven222" class="u-url mention" rel="nofollow noopener" target="_blank">@sven222</a> <a href="https://social.tchncs.de/@kuketzblog" class="u-url mention" rel="nofollow noopener" target="_blank">@kuketzblog</a> problem is <a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@signalapp</a> is a <a href="https://infosec.space/tags/Centralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#Centralized</a>, <a href="https://infosec.space/tags/Proprietary" class="mention hashtag" rel="nofollow noopener" target="_blank">#Proprietary</a>, <a href="https://infosec.space/tags/SingleVendor" class="mention hashtag" rel="nofollow noopener" target="_blank">#SingleVendor</a> & <a href="https://infosec.space/tags/SingleProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#SingleProvider</a> solution that falls under <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#CloudAct</a> and demands <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#PII</a> in the form of <a href="https://infosec.space/tags/PhoneNumbers" class="mention hashtag" rel="nofollow noopener" target="_blank">#PhoneNumbers</a>.<ul><li>So even if we'd agree that <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#XMPP</a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#OMEMO</a> as implememented in <a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@monocles</a> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#monoclesChat</a> & <a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener" target="_blank">@gajim</a> / <a href="https://infosec.space/tags/gajim" class="mention hashtag" rel="nofollow noopener" target="_blank">#gajim</a> is bad (and <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a>/MIME over XMPP isn't good either) there are still better options than <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#Signal</a> (i.e. <a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@delta</a> / <a href="https://infosec.space/tags/deltaChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#deltaChat</a> which uses PGP/MIME & <a href="https://infosec.space/tags/IMAP" class="mention hashtag" rel="nofollow noopener" target="_blank">#IMAP</a>-Push aka. <a href="https://infosec.space/tags/eMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#eMail</a>) that don't require a <a href="https://infosec.space/tags/PhoneNumber" class="mention hashtag" rel="nofollow noopener" target="_blank">#PhoneNumber</a>, allow <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfHosting</a> and are truly <a href="https://infosec.space/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenSource</a> with an <a href="https://infosec.space/tags/OpebStandard" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpebStandard</a> that allows for real <a href="https://infosec.space/tags/E2EE" class="mention hashtag" rel="nofollow noopener" target="_blank">#E2EE</a> as in <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfCustody</a> of all the <a href="https://infosec.space/tags/Keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#Keys</a>.</li></ul>Cuz all the <a href="https://infosec.space/tags/advertising" class="mention hashtag" rel="nofollow noopener" target="_blank">#advertising</a> of Signal is close to <a href="https://infosec.space/tags/TrustMeBro" class="mention hashtag" rel="nofollow noopener" target="_blank">#TrustMeBro</a> and I'd not trust in <a href="https://mastodon.world/@Mer__edith" class="u-url mention" rel="nofollow noopener" target="_blank">@Mer__edith</a> to <a href="https://web.archive.org/web/20210606070919/twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" target="_blank">risk jail for users</a>!<ul><li>But you do you... </li></ul><a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITsec</a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpSec</a> <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#ComSec</a>

Kevin Karhan :verified:<a href="https://mastodon.scot/@moh_kohn" class="u-url mention" rel="nofollow noopener" target="_blank">@moh_kohn</a> except <a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@signalapp</a> too is a <a href="https://infosec.space/tags/centralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#centralized</a>, <a href="https://infosec.space/tags/SingleVendir" class="mention hashtag" rel="nofollow noopener" target="_blank">#SingleVendir</a> & <a href="https://infosec.space/tags/SingleProvider" class="mention hashtag" rel="nofollow noopener" target="_blank">#SingleProvider</a> solution that fully falls under <a href="https://infosec.space/tags/CliudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#CliudAct</a> and thus CANNOT comply with <a href="https://infosec.space/tags/GDPR" class="mention hashtag" rel="nofollow noopener" target="_blank">#GDPR</a> & <a href="https://infosec.space/tags/BDSG" class="mention hashtag" rel="nofollow noopener" target="_blank">#BDSG</a> as a matter of principle since this digital rquivalent of <a href="https://infosec.space/tags/ExtraordinaryRendition" class="mention hashtag" rel="nofollow noopener" target="_blank">#ExtraordinaryRendition</a> is inherently incompatible!<ul><li>Use <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#XMPP</a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#OMEMO</a> & <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a>/MIME with <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfCustody</a> if all the <a href="https://infosec.space/tags/Keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#Keys</a> for real <a href="https://infosec.space/tags/EndToEndEncryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#EndToEndEncryption</a> that doesn't rely on a <a href="https://infosec.space/tags/VC" class="mention hashtag" rel="nofollow noopener" target="_blank">#VC</a> <a href="https://infosec.space/tags/MoneyBurningParty" class="mention hashtag" rel="nofollow noopener" target="_blank">#MoneyBurningParty</a>. </li></ul><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@monocles</a> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#monoclesChat</a>, <a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener" target="_blank">@gajim</a> / <a href="https://infosec.space/tags/gajim" class="mention hashtag" rel="nofollow noopener" target="_blank">#gajim</a> & <a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@delta</a> / <a href="https://infosec.space/tags/deltaChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#deltaChat</a>, <a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@thunderbird</a> / <a href="https://infosec.space/tags/Thunderbird" class="mention hashtag" rel="nofollow noopener" target="_blank">#Thunderbird</a> do support that!

F3715H<a href="https://mastodon.social/@MartinaNeumayer" class="u-url mention" rel="nofollow noopener" target="_blank">@MartinaNeumayer</a> <a href="https://net4sw.com/@VixenBlu" class="u-url mention" rel="nofollow noopener" target="_blank">@VixenBlu</a> <a href="https://spookygirl.boo/@thelusciouslibra" class="u-url mention" rel="nofollow noopener" target="_blank">@thelusciouslibra</a> I do recommend people to encrypt their emails and always exercise <a href="https://noods.fun/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfCustody</a> of all the <a href="https://noods.fun/tags/Keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#Keys</a>... - Never ever rely on a provider to safeguard you or any other users; even if we all do nothing wrong!<a href="https://web.archive.org/web/20240000000000*/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" translate="no" target="_blank">https://web.archive.org/web/20240000000000*/https://twitter.com/thegrugq/status/1085614812581715968</a>

xoron :verified:id like to share some details about how my app works so you can discover/give me feedback on my app. id like to have wording in my app to say something like "most secure chat app in the world"... i probably cant do that because it doesnt qualify.<a href="https://github.com/positive-intentions/chat" rel="nofollow noopener" translate="no" target="_blank">https://github.com/positive-intentions/chat</a><a href="https://positive-intentions.com/blog/introducing-decentralized-chat" rel="nofollow noopener" translate="no" target="_blank">https://positive-intentions.com/blog/introducing-decentralized-chat</a>im not an expert on <a href="https://infosec.exchange/tags/cyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cyberSecurity</a>. im sure there are many gaps in my knowlege in this domain.using <a href="https://infosec.exchange/tags/javascript" class="mention hashtag" rel="nofollow noopener" target="_blank">#javascript</a>, i initially created a fairly basic <a href="https://infosec.exchange/tags/chatApp" class="mention hashtag" rel="nofollow noopener" target="_blank">#chatApp</a> using using <a href="https://infosec.exchange/tags/peerjs" class="mention hashtag" rel="nofollow noopener" target="_blank">#peerjs</a> to create <a href="https://infosec.exchange/tags/encrypted" class="mention hashtag" rel="nofollow noopener" target="_blank">#encrypted</a> <a href="https://infosec.exchange/tags/webrtc" class="mention hashtag" rel="nofollow noopener" target="_blank">#webrtc</a> <a href="https://infosec.exchange/tags/connections" class="mention hashtag" rel="nofollow noopener" target="_blank">#connections</a>. this was then easily enhanced by exchanging additional <a href="https://infosec.exchange/tags/encryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#encryption</a> <a href="https://infosec.exchange/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a> from <a href="https://infosec.exchange/tags/cryptography" class="mention hashtag" rel="nofollow noopener" target="_blank">#cryptography</a> functions built into browsers (<a href="https://infosec.exchange/tags/webcrypto" class="mention hashtag" rel="nofollow noopener" target="_blank">#webcrypto</a> api) to add a redundent layer of encryption. a <a href="https://infosec.exchange/tags/diffieHelman" class="mention hashtag" rel="nofollow noopener" target="_blank">#diffieHelman</a> key <a href="https://infosec.exchange/tags/exchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#exchange</a> is done over <a href="https://infosec.exchange/tags/webrtc" class="mention hashtag" rel="nofollow noopener" target="_blank">#webrtc</a> (which can be considered <a href="https://infosec.exchange/tags/secure" class="mention hashtag" rel="nofollow noopener" target="_blank">#secure</a> when exchanged over public channels) to create <a href="https://infosec.exchange/tags/serverless" class="mention hashtag" rel="nofollow noopener" target="_blank">#serverless</a> <a href="https://infosec.exchange/tags/p2p" class="mention hashtag" rel="nofollow noopener" target="_blank">#p2p</a> <a href="https://infosec.exchange/tags/authentication" class="mention hashtag" rel="nofollow noopener" target="_blank">#authentication</a>.- i sometimes recieve feedback like "javascript is inherently insecure". i disagree with this and have <a href="https://infosec.exchange/tags/openedSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#openedSource</a> my <a href="https://infosec.exchange/tags/cryptography" class="mention hashtag" rel="nofollow noopener" target="_blank">#cryptography</a> module. its basically a thin wrapper around vanilla cryptography functions of a <a href="https://infosec.exchange/tags/browser" class="mention hashtag" rel="nofollow noopener" target="_blank">#browser</a> (webcrypto api).- another concern for my kind of app (<a href="https://infosec.exchange/tags/PWA" class="mention hashtag" rel="nofollow noopener" target="_blank">#PWA</a>) is that the developer may introduce malicious code. this is an important point for which i open sourced the project and give instructions for <a href="https://infosec.exchange/tags/selfhosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#selfhosting</a>. selhosting this app has some unique features. unlike many other <a href="https://infosec.exchange/tags/selfhosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#selfhosted</a> <a href="https://infosec.exchange/tags/projects" class="mention hashtag" rel="nofollow noopener" target="_blank">#projects</a>, this app can be hosted on <a href="https://infosec.exchange/tags/githubPages" class="mention hashtag" rel="nofollow noopener" target="_blank">#githubPages</a> (instructions are provided in the readme). im also working towards having better support for running the index.html directly without a static server.- to prevent things like browser extensions, the app uses strict <a href="https://infosec.exchange/tags/CSP" class="mention hashtag" rel="nofollow noopener" target="_blank">#CSP</a> headers to prevent <a href="https://infosec.exchange/tags/unauthorised" class="mention hashtag" rel="nofollow noopener" target="_blank">#unauthorised</a> code from running. <a href="https://infosec.exchange/tags/selfhosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#selfhosting</a> users should take note of this when setting up their own instance.- i received feedback the <a href="https://infosec.exchange/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#Signal</a>/#Simplex protocol is great. completely undertsandable and agree, but wonder if im reducing the <a href="https://infosec.exchange/tags/complexity" class="mention hashtag" rel="nofollow noopener" target="_blank">#complexity</a> by working with <a href="https://infosec.exchange/tags/webrtc" class="mention hashtag" rel="nofollow noopener" target="_blank">#webrtc</a>. while it has its many flaws, i think risks can be reasonable mitigated if the <a href="https://infosec.exchange/tags/cryptography" class="mention hashtag" rel="nofollow noopener" target="_blank">#cryptography</a> functions are implemented correctly. (all data out is <a href="https://infosec.exchange/tags/encrypted" class="mention hashtag" rel="nofollow noopener" target="_blank">#encrypted</a> and all data in is <a href="https://infosec.exchange/tags/decrypted" class="mention hashtag" rel="nofollow noopener" target="_blank">#decrypted</a> on-the-fly)- the key detail that makes this approach unique, is because as a <a href="https://infosec.exchange/tags/webapp" class="mention hashtag" rel="nofollow noopener" target="_blank">#webapp</a>, unlike other solutions, users have a choice of using any <a href="https://infosec.exchange/tags/device" class="mention hashtag" rel="nofollow noopener" target="_blank">#device</a>/#os/#browser. while a webapp can have nuanced <a href="https://infosec.exchange/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerabilities</a>, i think by <a href="https://infosec.exchange/tags/openSourcing" class="mention hashtag" rel="nofollow noopener" target="_blank">#openSourcing</a> and providing instructions for <a href="https://infosec.exchange/tags/selfhosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#selfhosting</a> and instructions to <a href="https://infosec.exchange/tags/build" class="mention hashtag" rel="nofollow noopener" target="_blank">#build</a> for various <a href="https://infosec.exchange/tags/platforms" class="mention hashtag" rel="nofollow noopener" target="_blank">#platforms</a>, it can provide a reasonable level of <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a>.i think if i stick to the principle of avoiding using any kind of "required" service provider (myself included) and allowing the <a href="https://infosec.exchange/tags/frontend" class="mention hashtag" rel="nofollow noopener" target="_blank">#frontend</a> and the peerjs-server to be <a href="https://infosec.exchange/tags/hosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#hosted</a> <a href="https://infosec.exchange/tags/independently" class="mention hashtag" rel="nofollow noopener" target="_blank">#independently</a>, im on track for creating a <a href="https://infosec.exchange/tags/chatSystem" class="mention hashtag" rel="nofollow noopener" target="_blank">#chatSystem</a> with the "fewest moving parts". i hope you will agree this is true <a href="https://infosec.exchange/tags/p2p" class="mention hashtag" rel="nofollow noopener" target="_blank">#p2p</a> and i hope i can use this as a step towards true <a href="https://infosec.exchange/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a> and <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a>. <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> might be further improved by using a trusted <a href="https://infosec.exchange/tags/VPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#VPN</a>.while there are several similar apps out there like mine. i think mine is distinctly a different approach. so its hard to find <a href="https://infosec.exchange/tags/bestPractices" class="mention hashtag" rel="nofollow noopener" target="_blank">#bestPractices</a> for the functionalities i want to achieve. in particular <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> practices to use when using <a href="https://infosec.exchange/tags/p2p" class="mention hashtag" rel="nofollow noopener" target="_blank">#p2p</a> technology.(note: this app is an <a href="https://infosec.exchange/tags/unstable" class="mention hashtag" rel="nofollow noopener" target="_blank">#unstable</a>, <a href="https://infosec.exchange/tags/experiment" class="mention hashtag" rel="nofollow noopener" target="_blank">#experiment</a>, <a href="https://infosec.exchange/tags/proofOfConcept" class="mention hashtag" rel="nofollow noopener" target="_blank">#proofOfConcept</a> and not ready to replace any other app or service. It's far from finished and provided for <a href="https://infosec.exchange/tags/testing" class="mention hashtag" rel="nofollow noopener" target="_blank">#testing</a> and <a href="https://infosec.exchange/tags/demo" class="mention hashtag" rel="nofollow noopener" target="_blank">#demo</a> purposes only. This post is to get <a href="https://infosec.exchange/tags/feedback" class="mention hashtag" rel="nofollow noopener" target="_blank">#feedback</a> on the progress to determine if i'm going in the right direction for a secure chat app)

Ben HardillSharing PGP keysA recent boosted <a href="https://social.coop/@fnat/113543896849600364" rel="nofollow noopener" target="_blank">toot</a> from <a rel="nofollow noopener" class="u-url mention" href="https://mastodon.neilzone.co.uk/@neil" target="_blank">@neil</a> combined with the <a href="https://keybase.io/" rel="nofollow noopener" target="_blank">keybase.io </a>Linux desktop widget causing me grief (it’s virtual filesystem stuff messing with Gnome file manage) made me think about how folks could, if they needed, find a public PGP key for me.Keybase.io was a nice idea, you could tie a PGP key to all your other web persona, this was done by publishing a signed hash e.g. as a tweet, in a DNS record, or at a known location on a web host. This meant that anybody who knew where to find you online could then “prove” that the public PGP key hosted on Keybase.io belonged to you. It was sort of like a modern take on the old <a href="https://en.wikipedia.org/wiki/Key_signing_party" rel="nofollow noopener" target="_blank">key signing parties</a>. But in the end they got <a href="https://keybase.io/blog/keybase-joins-zoom" rel="nofollow noopener" target="_blank">bought by Zoom</a>, and also started handing out crypto tokens…Distributing encryption keys is one of the well known hard problems in computer science, public key encryption makes it easier in that bit that needs distributing is something that can be shared with everybody, but there is still the discovery problem. E.g. how do I find the right public key of somebody you have never talked to before.Public Key ServersThis is a original way to share keys without having to meet up in person. You uploaded the keys to one of a few key server and tools like gpg/pgp could search for a public key using an email address.Servers like:<ul><li><a href="https://keys.openpgp.org" rel="nofollow noopener" target="_blank">keys.openpgp.org</a></li><li><a href="https://pgp.mit.edu" rel="nofollow noopener" target="_blank">pgp.mit.edu</a></li><li><a href="https://keys.openpgp.org" rel="nofollow noopener" target="_blank">keys.openpgp.org</a></li></ul>I did find longer lists online, but many of the servers didn’t respond when I tried to reach them. There was also a <a href="https://www.vice.com/en/article/someone-is-spamming-and-breaking-a-core-component-of-pgps-ecosystem/" rel="nofollow noopener" target="_blank">concerted effort</a> to spam some of these servers submitting lots of signatures attesting the validity of existing public keys.There are several problem with using a 3rd party server <ul><li>The person looking up your key needs to know which Key Server to use</li><li>If the Key Server goes down, you are unlikely to get notified</li><li>It’s hard/impossible to remove a key if you have lost access to the matching private key (removal requests need to be signed with the private key to prove you own it)</li></ul>Self HostingWhat we need is a way to self host a discoverable and verifiable public key. There are a few options out there.AutocryptThis is a little different to other options. Here your email client attaches your public key to all outbound email in the <code>Autocrypt</code> header. e.g. <pre>From: Ben Hardill <ben@hardill.me.uk>X-Clacks-Overhead: GNU Terry PratchettSubject: AutoCrypt TestAutocrypt: addr=ben@hardill.me.uk; keydata= xsFNBGdE1pcBEAC0UC8+URcqTgUdn1/XkbQqZP490NmzYd3eT0skrmVXIdvfq0aANpVKk2M8 Uf9YYcEEvG3szhGlDnNpvAoua9t8M1lV81BzA3Bqqmuci60r+87JWJ9b4mNQ8vyZ6rlqmsiy 3ffZssHHfrphRFJ1CIC1gF9NbeOkQRUb9H3Jlj8z8IIJLfZJ0JvrnZkNWDkF27LiXc9qYGb6 F/vqEUwNMQhhBzR6qVFwbZFR/Lk/DjmqVIVLqfhkfvYJ25m7XTEJtfnEHeEk8Uhvklg67mUS MtFVnE0uVSht7UmHUu4ChOZiDrvrMUMvLVR7nCArcRPrMofqOfkHNeC/c1Lwgma2dUfWiAYT QTNHD0/+sCRmh4d7tb1sR7u8iNtvo+MBqWa5YAUVr+ZLNSqhWk+OIIfNfSJdVIzugxKLuTlK 7u+w2mw0Rf5rDYpIxZ+HhgD+BlvURuZ70GAxtLrVqSBtJP9S3j5uXI60TJbKKAC4JmfLYVCZ JMOGgDSgQ9tPstB+g5m2/LxG2pNSMLYf1HSwdxInaxEQrrGFEGWKK70oWpSx2w30FTsfKKoh k84UwWKt3sSA5qpsgqljQ+QdIq0uyk2uiu4UfwYmqn6Z2iGRvFp0UL6y9k2FXzsGnpylUaMg 9Z0uElWuIvSoj8HKiZynyvN5EqSCxBEn1lMYePyZc6SPo3xA7QARAQABzR9CZW4gSGFyZGls bCA8YmVuQGhhcmRpbGwubWUudWs+wsGOBBMBCgA4FiEETxnBKLtNwgql5WTY/C0/tQgM/tgF AmdE1pcCGwMFCwkIBwIGFQoJCAsCBBYCAwECHgECF4AACgkQ/C0/tQgM/tiW5w/+PrYZVONv iV1rhqfkGpfoB9FcnkKMBuJOHmsF02cm2fKP1/9PNNvO3LWQQg2JYCvYZxaPu/jkxlOWzF+G GEeNgFotQHXpK9KVZkJhkghaHNeDGoPSBaQ7aWQAQLlHM5RwRcQEeLs+ZVYBhTqyR1AAGYPN /SLRPyjNOEavzmxegeF77k51+wngPr5E9rheoHUSTnF9W+1G0QHU28hqAdfCsKVTMt1KBJLR wLrExgKJJ9g+KiurD8qLdOGh8zr/HdM6WeCCNvKE3akqvUTgVPQxNJcyn7U5pxyxKd+js13I yhfZkW1zmbKqJiZLIsLWHfOgmtBXSBQScGuuGow/e9HhzFaNp1P5mK/qu4ZmOy6FMmcPksNI UmcNMOhpo5hwY9ZMNoX0upb+ES7QDKcj22xkXdOeRepwtcE+ORZ+hnXnSt3vZLJiEoMzskqc eG3Y07gTQW9Ffw9GQd9oYrgOLGx5qfySvY1YnIglw+lMRcPf3c5Ig9miYUKpzQBFR+3bIsan VlqpNCAMEn3/1zm1Hx+BseLzE0xB3l6/bZ/0RBM9UzhBZYJBtHFp/uRTmMVhibM91bHKmTxd cdIVwNjSbY9d5gJunl1E0H4mG+h+FA4ZuSEE7eiX89+pT9ikZ7z+pvgKLOgvvkgq7YPPL7FH PXUMLljaPEyrue++t0GYTME7iJzOwU0EZ0TWlwEQAMWC5NDhlHabqdiU3Xq0ZLIq/CzDMjrs dm4PypkNCzCs2EAcvzX6RPCny9bDzO1w3hcOIBKmxfNrTt79N+OChE26dGC8d3kxTzCFT58t 8xxKDAob0XfA++EXKD4Ys3P+7U1gc3LRW3b2xpiEgO2RtJgXtdmcaLqbApyJVfQpaAl1Mpsb gmcQOEVTmu9dLX6sINbL9C/6mxaOnPNMCe4Sn6QGWNkTUh1MMVlknUKuFa8phctLyQmYkyLf CU+PV9El83RTEOsYPmGve3/TiPSAlt6UohLRfM1Ad4x/sC7n3h5VBKYNshqzSx4WPJGlWq4O 7iqQb34ply2e5O5ZREWwYFO0YCnF4l8r7ReGCnpmWxi0VvvpGfkkvqZnqZVGlK/0MMoAa6LP lxIVrO9zg0U4p7L3MPEcDQS5pNmq/RteMd4sq9HbggIRf97Cew0eSQ55oDa+UOGzsoMId9N0 1xFEkzO12cvr9+fhcv1x9n1zLbpc6HudabvODcqR4kVKEtLksTqa4/dMCV0xMzr9i8Xkb+Ln hl+GWwnm0v2ygvjiyJkWpiWSPR+KYSQ6tWqTLykLHaxE8g3VqaaSFU7Nh3L204S0KQlp+yp6 30JUJz2qbdaHcMMQrnGZHommPW6NKsN+pqO8aNgg4EVlo9Laqcqp9hCsDhWAHWZeuhdEF2hZ ltwfABEBAAHCwXYEGAEKACAWIQRPGcEou03CCqXlZNj8LT+1CAz+2AUCZ0TWlwIbDAAKCRD8 LT+1CAz+2JDLEACLCoLEl5I18h63DBpPKKwsLSL445hTNgLkdAF6712Qam81SKHiLhrb3H1/ sGmou9NOZoMQlH/FYK6zixptQ/V0X1DCKz4kiegdsa2B9DQl5U6G2NTn7qOtBmwXsvruxVzm 0oVaSxNy8tngo+AeyNwTZllyzX9NfmARg68HEDQaBoR7qgDyaNJLRc5oEPU26xASLryl9Don +xpaue0i5M0bq5j2r+eEbX6kgkDKKGePFZerDkcUz8pGIMvW0lJ5FdslkPnBUoeYs2JkpkyU HYMHB1DsDDuc5+KRuEvsXgBPSu4S6uSUIe9TpW7yIareyzsj9zQ/PyPsODTe0NIU0ulYE0RX Dy1Vih6cwyG/EB3OAYDYxeGNSCgSY2xQhKfWJiMo2uQKt+/YO83t8W9zGICLw3IC6b4dCW20 Ym/oigWeLO4L7azaKugZSZTjqHgNuekvAAmpIb6D+hT4PjfN8DyYIzDevZYbkaJXx6gF29Kf 8cFAf1Ckl4DBC4RCy3d/NoIYoOAENoylFpI6OduOBSZtXf48GwnR4QuiZmnqWJMb9BXz4oWO si4xliJukimhQYnDKcPS6P/J5Sc4Rnii0RMrxZGauaeRZU3IGky6OQRnGbcIjc829XtvuDFt tg6vGUkw7A/Jhrjtd7hIHva3gFZiHyJ+uEK5pCVI7qpGvUtqfA==Content-Type: text/plain; charset=UTF-8; format=flowed</pre> Modern versions Thunderbird supports this feature and you can pick which key to attach to each account under the “End-To-End Encryption” section of each account.Thunderbird doesn’t automatically import these keys to the local keystore, but it can.This also relies on protocols such as SPF and DKIM to ensure the email arrived from a trusted source for the email address in question.More details can be found <a href="https://docs.autocrypt.org/" rel="nofollow noopener" target="_blank">here</a>.Web Key Service<a href="https://wiki.gnupg.org/WKS" rel="nofollow noopener" target="_blank">Web Key Service</a> (WKS) is a way to host public keys on a web server, discovery of the web server is done via DNS and has a couple of different options.This is what was mentioned in the <a href="https://fabionatali.com/posts/make-your-gnupg-key-discoverable-via-web-key-directory/" rel="nofollow noopener" target="_blank">post</a> linked to in the original toot, but it missed out a couple of details, so I’ll cover all the options here.This makes use of the <code>.well-known</code> directory that is used for many other discovery protocols. In this case the location will be <code>.well-known/openpgpkey</code> what comes after that depends on which of the other options is used.Firstly the <code>gpg-wks-server</code> tool is used to create the required files and directory structure, but there is a minor niggle with the <code>gpg-wks-server</code> tool, it will only work with a output directory that has the following permissions <code>rwxr-x---</code> which makes it accessible to the owner and people in the same group as the owner, but these files will most likely need to be world readable when deployed to the web server, especially as the intention is to make them available to anybody that needs them. <pre>$ mkdir output-dir$ chmod 740 output-dir$ gpg-wks-server --directory output-dir --install-key 4F19C128BB4DC20AA5E564D8FC2D3FB5080CFED8 ben@hardill.me.uk</pre> This will create a directory under <code>output-dir</code> with the domain name of the email address, in this case <code>hardill.me.uk</code>, under here there will be a <code>hu</code> directory and a policy file. Under the <code>hu</code> directory will be file with name which is a 32bit hex string. This is a SHA1 hash of the local part of the email address in <a href="https://www.rfc-editor.org/rfc/rfc6189.html#section-5.1.6" rel="nofollow noopener" target="_blank">Z-base-32</a> encoding. <pre>output-dir |-hardill.me.uk | |-hu | | |-qpui546ptjbsz3rqaetbdz8wj9op6nur | |-policy</pre> If you have a Web Server running on the same domain as the email domain (e.g. <code>hardill.me.uk</code>) then you can copy the <code>hu</code> directory and <code>policy</code> file to <code>.well-known/openpgpkey</code> directory <pre>/var/www/html/.well-known |-openpgpkey | |-hu | | |-qpui546ptjbsz3rqaetbdz8wj9op6nur | |-policy</pre> If you are not running a Web Server on the same domain, you can create a cname of <code>openpgpkey.[domain]</code> e.g. <code>openpgpkey.hardill.me.uk</code> and point that at a Web Server that will respond to that hostname and in this case you need to include the domain name in the directory structure <pre>/var/www/html/.well-known |-openpgpkey | |-hardill.me.uk | | |-hu | | | |-qpui546ptjbsz3rqaetbdz8wj9op6nur | | |-policy</pre> Thunderbird’s built in PGP support can use this mechanism to look up public keys for email addresses.There is a constraint that look ups will only be done over valid HTTPS to prevent man-in-the-middle tampering.Also I’ve not mentioned the <code>policy</code> file, this appears to be more aimed at mail service providers, as it dictates how a user should submit their keys via email to the provider for hosting on their WKS instance. It involves a 2 way encrypted email handshake. Since I have direct access to both my Web Server and the keys I want to publish, I’ve not explored setting this up.The specification can be found <a href="https://datatracker.ietf.org/doc/draft-koch-openpgp-webkey-service/" rel="nofollow noopener" target="_blank">here</a>.DANE<a href="https://en.wikipedia.org/wiki/DNS-based_Authentication_of_Named_Entities" rel="nofollow noopener" target="_blank">DNS-based Authentication of Named Entities</a> (DANE) was originally a way to do a form of HTTPS certificate pinning via DNS, which when combined with DNSSEC provides assurance that the certificate presented by a Web Server is the one the owner intended.It has since been extended to also support providing PGP keys for email users. This works by adding <code>OPENPGPKEY</code> records in the <code>_openpgpkey</code> sub domain e.g. <code>_openpgpkey.hardill.me.uk</code>. It uses a SHA256 hash of the local part of the email address as the hostname in the sub domain. This can be generated as follows: <pre>$ echo -n 'ben' | sha256sum | head -c566700869c8ff7480e34a70a708b028700dbaa3a033b5652b903afe89f</pre> (this does make it possible to pre-compute a list of local part’s and then use DNS to iterate these to generate a list of valid email addresses)The value of the record is just the ascii armoured version of the key with the <code>-----BEGIN PGP PRIVATE KEY BLOCK-----</code> header and <code>-----END PGP PRIVATE KEY BLOCK-----</code> (and the size) removed, but also with all the line breaks removed.The tricky bit is formatting the record correctly, I found a <a href="https://www.huque.com/bin/openpgpkey" rel="nofollow noopener" target="_blank">website</a> that would do it for bind, but this implies they you are editing the zone files by hand, rather than using something like <code>nsupdate</code> to make updates dynamically (this also helps if you have auto DNSSEC signing enabled). So I wrote the following script that will generate the correct <code>nsupdate</code> command to insert the key into DNS in the correct way. <pre>#!/bin/bashMAIL=$1LOCAL=$(echo "${MAIL}" | sed 's/@.*$//')DOMAIN=$(echo "${MAIL}" | sed 's/^.*@//')FQD="$(echo -n $LOCAL | sha256sum | head -c56)._openpgpkey.${DOMAIN}."KEY=$(gpg --export --export-options export-minimal --armor $1 | head -n-2 | tail -n+3 | tr -d '\n')echo "update add $FQD 3600 IN OPENPGPKEY $KEY"</pre> One thing of note is that these records will need to be accessed using DNS over TCP as all secure keys are likely to be too big to fit in a single UDP response packet.You can search and import a key using gpg <pre>$ gpg --auto-key-locate clear,nodefault,dane --locate-keys ben@hardill.me.ukgpg: checking the trustdbgpg: marginals needed: 3 completes needed: 1 trust model: pgpgpg: depth: 0 valid: 1 signed: 0 trust: 0-, 0q, 0n, 0m, 0f, 1ugpg: key FC2D3FB5080CFED8: public key "Ben Hardill <ben@hardill.me.uk>" importedgpg: Total number processed: 1gpg: imported: 1pub rsa4096 2024-11-25 [SC] 4F19C128BB4DC20AA5E564D8FC2D3FB5080CFED8uid [ unknown] Ben Hardill <ben@hardill.me.uk>sub rsa4096 2024-11-25 [E]</pre> The RFC is <a href="https://datatracker.ietf.org/doc/html/rfc8162" rel="nofollow noopener" target="_blank">here</a>.<a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://blog.hardill.me.uk/tag/keys/" target="_blank">#keys</a> <a rel="nofollow noopener" class="hashtag u-tag u-category" href="https://blog.hardill.me.uk/tag/pgp/" target="_blank">#pgp</a>

Kevin Karhan :verified:<a href="https://tech.lgbt/@deilann" class="u-url mention" rel="nofollow noopener" target="_blank">@deilann</a> +9001%Use actually secure comms instead that are <a href="https://infosec.space/tags/decentralized" class="mention hashtag" rel="nofollow noopener" target="_blank">#decentralized</a>, <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfHosting</a>-capable, auditable and provide actual <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfCustody</a> of all the <a href="https://infosec.space/tags/Keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#Keys</a>, so you can enforce your 5th Amendment!<ul><li>AFAICT <a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#XMPP</a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#OMEMO</a> it is, followered by <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a>/MIME <a href="https://infosec.space/tags/eMails" class="mention hashtag" rel="nofollow noopener" target="_blank">#eMails</a>. For.bith there are excellent clients like <a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@monocles</a> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#monoclesChat</a> & <a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener" target="_blank">@gajim</a> (XMPP+OMEMO) and <a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@delta</a> / <a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@thunderbird</a> (PGP/MIME)...</li><li>Use <a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@torproject</a> / <a href="https://infosec.space/tags/Tor" class="mention hashtag" rel="nofollow noopener" target="_blank">#Tor</a> and not <a href="https://infosec.space/tags/VPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#VPN</a> as the latter one <a href="https://web.archive.org/web/20220112020000/https://twitter.com/thegrugq/status/1085614812581715968" rel="nofollow noopener" target="_blank">will snitch</a> since <a href="https://infosec.space/tags/loglessVPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#loglessVPN</a>|s are basically illegal (every juristiction I know demands <a href="https://infosec.space/tags/LawfulInterception" class="mention hashtag" rel="nofollow noopener" target="_blank">#LawfulInterception</a> and <a href="https://infosec.space/tags/logging" class="mention hashtag" rel="nofollow noopener" target="_blank">#logging</a> by <a href="https://infosec.space/tags/Telcos" class="mention hashtag" rel="nofollow noopener" target="_blank">#Telcos</a>)!</li></ul>

Kir4ik52 :blobfoxnerd:Key Copier — утилита для копирования замковых ключей с помощью Flipper ZeroДля копирования бородки надо выбрать модель ключа, приложить сам ключ к экрану Flipper Zero и отрегулировать положение выемок. Цифровой слепок можно использовать для изготовления дубликата в мастерской.src: <a href="https://github.com/zinongli/KeyCopier" rel="nofollow noopener" translate="no" target="_blank">https://github.com/zinongli/KeyCopier</a><a href="https://mastodon.ml/tags/blacktriangle" class="mention hashtag" rel="nofollow noopener" target="_blank">#blacktriangle</a> <a href="https://mastodon.ml/tags/github" class="mention hashtag" rel="nofollow noopener" target="_blank">#github</a> <a href="https://mastodon.ml/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#opensource</a> <a href="https://mastodon.ml/tags/foss" class="mention hashtag" rel="nofollow noopener" target="_blank">#foss</a> <a href="https://mastodon.ml/tags/FlipperZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#FlipperZero</a> <a href="https://mastodon.ml/tags/key" class="mention hashtag" rel="nofollow noopener" target="_blank">#key</a> <a href="https://mastodon.ml/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a>

This Is My GlasgowOdell latch keys were most often used for communal doors to provide a level of security at a time when proper locks were much more expensive and the keys were much larger, making them hard to carry around. While I knew these were used in Glasgow, I've never found one of their distinctive keyhole plates before. The Odell Night Latches, which these keys fitted into, are almost impossible to find.<a href="https://mastodon.scot/tags/glasgow" class="mention hashtag" rel="nofollow noopener" target="_blank">#glasgow</a> <a href="https://mastodon.scot/tags/odelllatchkey" class="mention hashtag" rel="nofollow noopener" target="_blank">#odelllatchkey</a> <a href="https://mastodon.scot/tags/doorfuriture" class="mention hashtag" rel="nofollow noopener" target="_blank">#doorfuriture</a> <a href="https://mastodon.scot/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a> <a href="https://mastodon.scot/tags/locks" class="mention hashtag" rel="nofollow noopener" target="_blank">#locks</a> <a href="https://mastodon.scot/tags/glasgowhistory" class="mention hashtag" rel="nofollow noopener" target="_blank">#glasgowhistory</a>

This Is My GlasgowI came across this unusual upside down T-shaped keyhole on the door of a Victorian townhouse in Glasgow today. It's for an Odell Night Latch Key, of the type shown on the right. Patented in 1792, they came in a wide variety of different shapes and you put them through the cross bar of the T and then lifted them up. They'd only open the latch if their shape fitted the inverse shape of the mechanism in the lock itself, which sat on the other side of the door. Cont./<a href="https://mastodon.scot/tags/glasgow" class="mention hashtag" rel="nofollow noopener" target="_blank">#glasgow</a> <a href="https://mastodon.scot/tags/doorfuriture" class="mention hashtag" rel="nofollow noopener" target="_blank">#doorfuriture</a> <a href="https://mastodon.scot/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a>

Chirael (Anthony) :donor: :ferdiverified: 🇺🇦 :rainbow_flag:I’ll stick with my Devious Decoder Card (from <a href="https://defcon.social/@deviantollam" class="u-url mention" rel="nofollow noopener" target="_blank">@deviantollam</a>) but this is still cool and better than nothing, something else to try besides taking a picture of the key and trying to decode with a line/depth overlay.Kwikset as shown in the video is pretty easy to almost sight read anyway but I wonder if the Flipper app would be harder to use with finer depth increments like Schlage or Best SFIC.Still cool to think they could add many more key depths over time though.<a href="https://www.youtube.com/watch?v=RPrd-S5Cmxo" rel="nofollow noopener" translate="no" target="_blank">https://www.youtube.com/watch?v=RPrd-S5Cmxo</a> <a href="https://infosec.exchange/tags/FlipperZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#FlipperZero</a> <a href="https://infosec.exchange/tags/locksport" class="mention hashtag" rel="nofollow noopener" target="_blank">#locksport</a> <a href="https://infosec.exchange/tags/locksmith" class="mention hashtag" rel="nofollow noopener" target="_blank">#locksmith</a> <a href="https://infosec.exchange/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a>

Kevin Karhan :verified:<a href="https://grapheneos.social/@GrapheneOS" class="u-url mention" rel="nofollow noopener" target="_blank">@GrapheneOS</a> <a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@signalapp</a> I didn't say all of them have it...Re: <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#Signal</a> I'd not consider it <a href="https://infosec.space/tags/disinfo" class="mention hashtag" rel="nofollow noopener" target="_blank">#disinfo</a> as we've seen more elaborate Setups like <a href="https://infosec.space/tags/EncroChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#EncroChat</a> & <a href="https://infosec.space/tags/AN%C3%98M" class="mention hashtag" rel="nofollow noopener" target="_blank">#ANØM</a> fall.<ul><li>Given the fact that one cannot <a href="https://infosec.space/tags/SelfHost" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfHost</a> <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#Signal</a>'s backend, they shilled the <a href="https://infosec.space/tags/MobileCoin" class="mention hashtag" rel="nofollow noopener" target="_blank">#MobileCoin</a> <a href="https://infosec.space/tags/scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#scam</a> and use <a href="https://infosec.space/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#PII</a> like <a href="https://infosec.space/tags/PhoneNumbers" class="mention hashtag" rel="nofollow noopener" target="_blank">#PhoneNumbers</a> to enforce 'selective availability' as well being incorporated in the <a href="https://infosec.space/tags/USA" class="mention hashtag" rel="nofollow noopener" target="_blank">#USA</a> all rubs be unpleasantly...</li><li>"The" correct way to do things (sarcasm OFC!) is to do <a href="https://infosec.space/tags/OfflinePGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OfflinePGP</a> but we can all agree <a href="https://www.youtube.com/watch?v=vdab4T_CoN8" rel="nofollow noopener" target="_blank">it's not practical</a>...</li></ul>I remember when <a href="https://infosec.space/tags/Signal" class="mention hashtag" rel="nofollow noopener" target="_blank">#Signal</a> did a good <a href="https://infosec.space/tags/E2EE" class="mention hashtag" rel="nofollow noopener" target="_blank">#E2EE</a> Messenger (<a href="https://infosec.space/tags/TextSecure" class="mention hashtag" rel="nofollow noopener" target="_blank">#TextSecure</a>) and that had a reason to use <a href="https://infosec.space/tags/PhoneNumbers" class="mention hashtag" rel="nofollow noopener" target="_blank">#PhoneNumbers</a> as it merely encrypted <a href="https://infosec.space/tags/SMS" class="mention hashtag" rel="nofollow noopener" target="_blank">#SMS</a>, but that OFC has other issues.<ul><li>In terms if "proper <a href="https://infosec.space/tags/E2EE" class="mention hashtag" rel="nofollow noopener" target="_blank">#E2EE</a>" with <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfCustody</a> if <a href="https://infosec.space/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a>, <a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@delta</a> / <a href="https://infosec.space/tags/deltaChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#deltaChat</a> does fit even the stingest criteria - including <a href="https://infosec.space/tags/encrypted" class="mention hashtag" rel="nofollow noopener" target="_blank">#encrypted</a> <a href="https://infosec.space/tags/GroupChats" class="mention hashtag" rel="nofollow noopener" target="_blank">#GroupChats</a>!</li></ul>

Kevin Karhan :verified:<a href="https://exquisite.social/@h3artbl33d" class="u-url mention" rel="nofollow noopener" target="_blank">@h3artbl33d</a> <a href="https://mastodon.sdf.org/@arikb" class="u-url mention" rel="nofollow noopener" target="_blank">@arikb</a> <a href="https://grapheneos.social/@GrapheneOS" class="u-url mention" rel="nofollow noopener" target="_blank">@GrapheneOS</a> well, there are existibg solutions like <a href="https://infosec.space/tags/OTR" class="mention hashtag" rel="nofollow noopener" target="_blank">#OTR</a>, <a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#OMEMO</a> or minimalist <a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a> implementations.<ul><li>OFC all of these require <a href="https://infosec.space/tags/SelfCustody" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfCustody</a> of <a href="https://infosec.space/tags/Keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#Keys</a> for real <a href="https://infosec.space/tags/E2EE" class="mention hashtag" rel="nofollow noopener" target="_blank">#E2EE</a> where providers basically can't decrypt shit, but one can, already use these today:</li></ul>It's 2024, <a href="https://infosec.space/tags/Tails" class="mention hashtag" rel="nofollow noopener" target="_blank">#Tails</a> / <a href="https://fosstodon.org/@tails" class="u-url mention" rel="nofollow noopener" target="_blank">@tails</a> / <a href="https://venera.social/profile/tails_live" class="u-url mention" rel="nofollow noopener" target="_blank">@tails_live</a> , <a href="https://infosec.space/tags/Kleopatra" class="mention hashtag" rel="nofollow noopener" target="_blank">#Kleopatra</a> & <a href="https://infosec.space/tags/OpenKeychain" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenKeychain</a> exist. There's <a href="https://infosec.space/tags/documentation" class="mention hashtag" rel="nofollow noopener" target="_blank">#documentation</a> and <a href="https://infosec.space/tags/tutorials" class="mention hashtag" rel="nofollow noopener" target="_blank">#tutorials</a> around, and at a certain point we can't help <a href="https://infosec.space/tags/TechIlliterates" class="mention hashtag" rel="nofollow noopener" target="_blank">#TechIlliterates</a> that refuse to learn even the simplest & most -"hand holding*" solutions anymore...

Schneier on Security RSSCompromising the Secure Boot ProcessThis isn’t good: On Thursday, researchers from security firm Binarly revealed that Secure... <a href="https://www.schneier.com/blog/archives/2024/07/compromising-the-secure-boot-process.html" rel="nofollow noopener" translate="no" target="_blank">https://www.schneier.com/blog/archives/2024/07/compromising-the-secure-boot-process.html</a> <a href="https://burn.capital/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerabilities</a> <a href="https://burn.capital/tags/Uncategorized" class="mention hashtag" rel="nofollow noopener" target="_blank">#Uncategorized</a> <a href="https://burn.capital/tags/cryptography" class="mention hashtag" rel="nofollow noopener" target="_blank">#cryptography</a> <a href="https://burn.capital/tags/supplychain" class="mention hashtag" rel="nofollow noopener" target="_blank">#supplychain</a> <a href="https://burn.capital/tags/encryption" class="mention hashtag" rel="nofollow noopener" target="_blank">#encryption</a> <a href="https://burn.capital/tags/passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#passwords</a> <a href="https://burn.capital/tags/keys" class="mention hashtag" rel="nofollow noopener" target="_blank">#keys</a>

Recent searches

Search options

Administered by:

Server stats:

#keys