home.social

#sequoiapgp — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #sequoiapgp, aggregated by home.social.

  1. We have a long way ahead of us before PQC-resilient #OpenPGP smartcards are available for the normal user. Does #sequoiapgp plan to support the combination of currently available smartcards with PQC-keys stored on disk, similar to what GnuPG offers?
    lists.gnupg.org/pipermail/gnup

  2. We have a long way ahead of us before PQC-resilient #OpenPGP smartcards are available for the normal user. Does #sequoiapgp plan to support the combination of currently available smartcards with PQC-keys stored on disk, similar to what GnuPG offers?
    lists.gnupg.org/pipermail/gnup

  3. We have a long way ahead of us before PQC-resilient #OpenPGP smartcards are available for the normal user. Does #sequoiapgp plan to support the combination of currently available smartcards with PQC-keys stored on disk, similar to what GnuPG offers?
    lists.gnupg.org/pipermail/gnup

  4. We have a long way ahead of us before PQC-resilient #OpenPGP smartcards are available for the normal user. Does #sequoiapgp plan to support the combination of currently available smartcards with PQC-keys stored on disk, similar to what GnuPG offers?
    lists.gnupg.org/pipermail/gnup

  5. @kushal My OpenPGP private key ist stored on my two Yubikeys. I always sign with GnuPG when I commit with git. And, I check my release tarballs and zip files before I sign them:
    codeberg.org/duxsco/gentoo-ins

    I publish information on how to fetch my public key:
    duxsco.de/my_openpgp_public_ke

    I’d love to use only sequoia-pgp, but I think this will not happen in the foreseeable future due to the use of rust and the difficulties to package sequoia-keystore due to that:
    bugs.gentoo.org/965482

    #gnupg #sequoiapgp

  6. @kushal My OpenPGP private key ist stored on my two Yubikeys. I always sign with GnuPG when I commit with git. And, I check my release tarballs and zip files before I sign them:
    codeberg.org/duxsco/gentoo-ins

    I publish information on how to fetch my public key:
    duxsco.de/my_openpgp_public_ke

    I’d love to use only sequoia-pgp, but I think this will not happen in the foreseeable future due to the use of rust and the difficulties to package sequoia-keystore due to that:
    bugs.gentoo.org/965482

    #gnupg #sequoiapgp

  7. @kushal My OpenPGP private key ist stored on my two Yubikeys. I always sign with GnuPG when I commit with git. And, I check my release tarballs and zip files before I sign them:
    codeberg.org/duxsco/gentoo-ins

    I publish information on how to fetch my public key:
    duxsco.de/my_openpgp_public_ke

    I’d love to use only sequoia-pgp, but I think this will not happen in the foreseeable future due to the use of rust and the difficulties to package sequoia-keystore due to that:
    bugs.gentoo.org/965482

    #gnupg #sequoiapgp

  8. @kushal My OpenPGP private key ist stored on my two Yubikeys. I always sign with GnuPG when I commit with git. And, I check my release tarballs and zip files before I sign them:
    codeberg.org/duxsco/gentoo-ins

    I publish information on how to fetch my public key:
    duxsco.de/my_openpgp_public_ke

    I’d love to use only sequoia-pgp, but I think this will not happen in the foreseeable future due to the use of rust and the difficulties to package sequoia-keystore due to that:
    bugs.gentoo.org/965482

    #gnupg #sequoiapgp

  9. @kushal My OpenPGP private key ist stored on my two Yubikeys. I always sign with GnuPG when I commit with git. And, I check my release tarballs and zip files before I sign them:
    codeberg.org/duxsco/gentoo-ins

    I publish information on how to fetch my public key:
    duxsco.de/my_openpgp_public_ke

    I’d love to use only sequoia-pgp, but I think this will not happen in the foreseeable future due to the use of rust and the difficulties to package sequoia-keystore due to that:
    bugs.gentoo.org/965482

    #gnupg #sequoiapgp

  10. Por lo visto las claves generadas por Proton añaden a los datos de identidad el correo sin respetar los guiones y los puntos del usuario (pero no del dominio) a las claves disponibles en su servidor.

    Es decir, si mi dirección es "[email protected]" o "[email protected]", la clave PGP tendrá asociada "[email protected]". Y si el correo asociado a la llave pública y la del destinatario no coinciden, otros clientes PGP se negarán a usarla.

    En otras palabras: generad vuestras *propias claves*. Proton sigue permitiendo subir a sus servidores claves autogeneradas btw.

    #Proton #OpenPGP #GPG #OpenKeychain #SequoiaPGP #Mozilla #Thunderbird

  11. Por lo visto las claves generadas por Proton añaden a los datos de identidad el correo sin respetar los guiones y los puntos del usuario (pero no del dominio) a las claves disponibles en su servidor.

    Es decir, si mi dirección es "[email protected]" o "[email protected]", la clave PGP tendrá asociada "[email protected]". Y si el correo asociado a la llave pública y la del destinatario no coinciden, otros clientes PGP se negarán a usarla.

    En otras palabras: generad vuestras *propias claves*. Proton sigue permitiendo subir a sus servidores claves autogeneradas btw.

    #Proton #OpenPGP #GPG #OpenKeychain #SequoiaPGP #Mozilla #Thunderbird

  12. Por lo visto las claves generadas por Proton añaden a los datos de identidad el correo sin respetar los guiones y los puntos del usuario (pero no del dominio) a las claves disponibles en su servidor.

    Es decir, si mi dirección es "[email protected]" o "[email protected]", la clave PGP tendrá asociada "[email protected]". Y si el correo asociado a la llave pública y la del destinatario no coinciden, otros clientes PGP se negarán a usarla.

    En otras palabras: generad vuestras *propias claves*. Proton sigue permitiendo subir a sus servidores claves autogeneradas btw.

    #Proton #OpenPGP #GPG #OpenKeychain #SequoiaPGP #Mozilla #Thunderbird

  13. Por lo visto las claves generadas por Proton añaden a los datos de identidad el correo sin respetar los guiones y los puntos del usuario (pero no del dominio) a las claves disponibles en su servidor.

    Es decir, si mi dirección es "[email protected]" o "[email protected]", la clave PGP tendrá asociada "[email protected]". Y si el correo asociado a la llave pública y la del destinatario no coinciden, otros clientes PGP se negarán a usarla.

    En otras palabras: generad vuestras *propias claves*. Proton sigue permitiendo subir a sus servidores claves autogeneradas btw.

    #Proton #OpenPGP #GPG #OpenKeychain #SequoiaPGP #Mozilla #Thunderbird

  14. Por lo visto las claves generadas por Proton añaden a los datos de identidad el correo sin respetar los guiones y los puntos del usuario (pero no del dominio) a las claves disponibles en su servidor.

    Es decir, si mi dirección es "[email protected]" o "[email protected]", la clave PGP tendrá asociada "[email protected]". Y si el correo asociado a la llave pública y la del destinatario no coinciden, otros clientes PGP se negarán a usarla.

    En otras palabras: generad vuestras *propias claves*. Proton sigue permitiendo subir a sus servidores claves autogeneradas btw.

    #Proton #OpenPGP #GPG #OpenKeychain #SequoiaPGP #Mozilla #Thunderbird

  15. A lot of us have have been complaining about GnuPG for years but gpg.fail/ takes no prisoners on all sides🔥

    #39c3 #gnupg #gpgfail #sequoiapgp

  16. A lot of us have have been complaining about GnuPG for years but gpg.fail/ takes no prisoners on all sides🔥

    #39c3 #gnupg #gpgfail #sequoiapgp

  17. A lot of us have have been complaining about GnuPG for years but gpg.fail/ takes no prisoners on all sides🔥

    #39c3 #gnupg #gpgfail #sequoiapgp

  18. A lot of us have have been complaining about GnuPG for years but gpg.fail/ takes no prisoners on all sides🔥

    #39c3 #gnupg #gpgfail #sequoiapgp

  19. A lot of us have have been complaining about GnuPG for years but gpg.fail/ takes no prisoners on all sides🔥

    #39c3 #gnupg #gpgfail #sequoiapgp

  20. @iuvi @GnuPG

    if Kyber also available in Kleopatra? Thanks

    IMHO below:

    Who cares? It's often said that the videotape format war and the high-definition optical disc format war were won by whatever the porn industry favoured. I don't know whether this claim about video format wars is true, but I would argue that the LibrePGP vs. RFC 9580 "war" will be won by whatever is favoured by the predominant public key distribution platform.

    Currently, that platform is keys.openpgp.org which I don't expect to support LibrePGP anytime soon, because it relies on sequoia-openpgp which I don't expect to support the RFC behind LibrePGP as long as it's just an Active Internet-Draft. At least, Sequoia-PGP supported RFC 9580 after it was released in July 2024 (link). So, why should they handle LibrePGP any differently? tbh, even if the RFC behind LibrePGP has the status of a "RFC - Proposed Standard" which I expect it to never get, I don't think Sequoia-PGP will support it.

    I for once will rotate my keypair and opt for Sequoia-PGP once this Gentoo bug has been solved. My reasons:

    1. I expect for RFC 9580 to remain favoured on the predominant public key platform.
    2. I cannot rely on the GnuPG manpage (link).

    #GnuPG #sequoiapgp

  21. @iuvi @GnuPG

    if Kyber also available in Kleopatra? Thanks

    IMHO below:

    Who cares? It's often said that the videotape format war and the high-definition optical disc format war were won by whatever the porn industry favoured. I don't know whether this claim about video format wars is true, but I would argue that the LibrePGP vs. RFC 9580 "war" will be won by whatever is favoured by the predominant public key distribution platform.

    Currently, that platform is keys.openpgp.org which I don't expect to support LibrePGP anytime soon, because it relies on sequoia-openpgp which I don't expect to support the RFC behind LibrePGP as long as it's just an Active Internet-Draft. At least, Sequoia-PGP supported RFC 9580 after it was released in July 2024 (link). So, why should they handle LibrePGP any differently? tbh, even if the RFC behind LibrePGP has the status of a "RFC - Proposed Standard" which I expect it to never get, I don't think Sequoia-PGP will support it.

    I for once will rotate my keypair and opt for Sequoia-PGP once this Gentoo bug has been solved. My reasons:

    1. I expect for RFC 9580 to remain favoured on the predominant public key platform.
    2. I cannot rely on the GnuPG manpage (link).

    #GnuPG #sequoiapgp

  22. @iuvi @GnuPG

    if Kyber also available in Kleopatra? Thanks

    IMHO below:

    Who cares? It's often said that the videotape format war and the high-definition optical disc format war were won by whatever the porn industry favoured. I don't know whether this claim about video format wars is true, but I would argue that the LibrePGP vs. RFC 9580 "war" will be won by whatever is favoured by the predominant public key distribution platform.

    Currently, that platform is keys.openpgp.org which I don't expect to support LibrePGP anytime soon, because it relies on sequoia-openpgp which I don't expect to support the RFC behind LibrePGP as long as it's just an Active Internet-Draft. At least, Sequoia-PGP supported RFC 9580 after it was released in July 2024 (link). So, why should they handle LibrePGP any differently? tbh, even if the RFC behind LibrePGP has the status of a "RFC - Proposed Standard" which I expect it to never get, I don't think Sequoia-PGP will support it.

    I for once will rotate my keypair and opt for Sequoia-PGP once this Gentoo bug has been solved. My reasons:

    1. I expect for RFC 9580 to remain favoured on the predominant public key platform.
    2. I cannot rely on the GnuPG manpage (link).

    #GnuPG #sequoiapgp

  23. @iuvi @GnuPG

    if Kyber also available in Kleopatra? Thanks

    IMHO below:

    Who cares? It's often said that the videotape format war and the high-definition optical disc format war were won by whatever the porn industry favoured. I don't know whether this claim about video format wars is true, but I would argue that the LibrePGP vs. RFC 9580 "war" will be won by whatever is favoured by the predominant public key distribution platform.

    Currently, that platform is keys.openpgp.org which I don't expect to support LibrePGP anytime soon, because it relies on sequoia-openpgp which I don't expect to support the RFC behind LibrePGP as long as it's just an Active Internet-Draft. At least, Sequoia-PGP supported RFC 9580 after it was released in July 2024 (link). So, why should they handle LibrePGP any differently? tbh, even if the RFC behind LibrePGP has the status of a "RFC - Proposed Standard" which I expect it to never get, I don't think Sequoia-PGP will support it.

    I for once will rotate my keypair and opt for Sequoia-PGP once this Gentoo bug has been solved. My reasons:

    1. I expect for RFC 9580 to remain favoured on the predominant public key platform.
    2. I cannot rely on the GnuPG manpage (link).

    #GnuPG #sequoiapgp

  24. @iuvi @GnuPG

    if Kyber also available in Kleopatra? Thanks

    IMHO below:

    Who cares? It's often said that the videotape format war and the high-definition optical disc format war were won by whatever the porn industry favoured. I don't know whether this claim about video format wars is true, but I would argue that the LibrePGP vs. RFC 9580 "war" will be won by whatever is favoured by the predominant public key distribution platform.

    Currently, that platform is keys.openpgp.org which I don't expect to support LibrePGP anytime soon, because it relies on sequoia-openpgp which I don't expect to support the RFC behind LibrePGP as long as it's just an Active Internet-Draft. At least, Sequoia-PGP supported RFC 9580 after it was released in July 2024 (link). So, why should they handle LibrePGP any differently? tbh, even if the RFC behind LibrePGP has the status of a "RFC - Proposed Standard" which I expect it to never get, I don't think Sequoia-PGP will support it.

    I for once will rotate my keypair and opt for Sequoia-PGP once this Gentoo bug has been solved. My reasons:

    1. I expect for RFC 9580 to remain favoured on the predominant public key platform.
    2. I cannot rely on the GnuPG manpage (link).

    #GnuPG #sequoiapgp

  25. @Velocifyer @andrewg That's the reason for my plans to switch from #GnuPG to #sequoiapgp, not the #LibrePGP vs #RFC9580 mess. If a RTFM doesn't suffice and it comes down to RTFC (...Code), I am out.

    See GnuPG manpage:

    ❯ gpg --version | head -n 1
    gpg (GnuPG) 2.5.13
    ❯ man gpg | sed -n '/^[[:space:]]*dane/,/^$/p'
    dane Locate a key using DANE, as specified in draft-ietf-dane-openpgpkey-05.txt.

    ... and:

    The lookup result MUST pass DNSSEC validation; if validation reaches any state other than "Secure", the verification MUST be treated as a failure.

    Source: datatracker.ietf.org/doc/html/

  26. @Velocifyer @andrewg That's the reason for my plans to switch from #GnuPG to #sequoiapgp, not the #LibrePGP vs #RFC9580 mess. If a RTFM doesn't suffice and it comes down to RTFC (...Code), I am out.

    See GnuPG manpage:

    ❯ gpg --version | head -n 1
    gpg (GnuPG) 2.5.13
    ❯ man gpg | sed -n '/^[[:space:]]*dane/,/^$/p'
    dane Locate a key using DANE, as specified in draft-ietf-dane-openpgpkey-05.txt.

    ... and:

    The lookup result MUST pass DNSSEC validation; if validation reaches any state other than "Secure", the verification MUST be treated as a failure.

    Source: datatracker.ietf.org/doc/html/

  27. @Velocifyer @andrewg That's the reason for my plans to switch from #GnuPG to #sequoiapgp, not the #LibrePGP vs #RFC9580 mess. If a RTFM doesn't suffice and it comes down to RTFC (...Code), I am out.

    See GnuPG manpage:

    ❯ gpg --version | head -n 1
    gpg (GnuPG) 2.5.13
    ❯ man gpg | sed -n '/^[[:space:]]*dane/,/^$/p'
    dane Locate a key using DANE, as specified in draft-ietf-dane-openpgpkey-05.txt.

    ... and:

    The lookup result MUST pass DNSSEC validation; if validation reaches any state other than "Secure", the verification MUST be treated as a failure.

    Source: datatracker.ietf.org/doc/html/

  28. @Velocifyer @andrewg That's the reason for my plans to switch from #GnuPG to #sequoiapgp, not the #LibrePGP vs #RFC9580 mess. If a RTFM doesn't suffice and it comes down to RTFC (...Code), I am out.

    See GnuPG manpage:

    ❯ gpg --version | head -n 1
    gpg (GnuPG) 2.5.13
    ❯ man gpg | sed -n '/^[[:space:]]*dane/,/^$/p'
    dane Locate a key using DANE, as specified in draft-ietf-dane-openpgpkey-05.txt.

    ... and:

    The lookup result MUST pass DNSSEC validation; if validation reaches any state other than "Secure", the verification MUST be treated as a failure.

    Source: datatracker.ietf.org/doc/html/

  29. @Velocifyer @andrewg That's the reason for my plans to switch from #GnuPG to #sequoiapgp, not the #LibrePGP vs #RFC9580 mess. If a RTFM doesn't suffice and it comes down to RTFC (...Code), I am out.

    See GnuPG manpage:

    ❯ gpg --version | head -n 1
    gpg (GnuPG) 2.5.13
    ❯ man gpg | sed -n '/^[[:space:]]*dane/,/^$/p'
    dane Locate a key using DANE, as specified in draft-ietf-dane-openpgpkey-05.txt.

    ... and:

    The lookup result MUST pass DNSSEC validation; if validation reaches any state other than "Secure", the verification MUST be treated as a failure.

    Source: datatracker.ietf.org/doc/html/

  30. 🤚 Free Saturday
    👉 Saturday spent working on Free Software

    Highlights from #Gentoo:
    #Gemato is now compatible with #FreePG and mostly compatible with #SequoiaPGP chameleon.
    • Prepared patches to support FreePG and SequoiaPGP chameleon as "gpg" symlink providers.
    #FlexiBLAS is now enabled by default on ~arch.
    • Finally finished working on #PkgCheck check for missing #PyPI provenance checks.
    • gpy-list-pkg-impls now includes "does this package have tests?" state, can optionally include PythonCompatUpdate results from PkgCheck and output mIRC colors. In other words, our IRC bot will now tell us when dependencies let us port new packages to #Python 3.14, and whether these packages have tests.

  31. 🤚 Free Saturday
    👉 Saturday spent working on Free Software

    Highlights from #Gentoo:
    #Gemato is now compatible with #FreePG and mostly compatible with #SequoiaPGP chameleon.
    • Prepared patches to support FreePG and SequoiaPGP chameleon as "gpg" symlink providers.
    #FlexiBLAS is now enabled by default on ~arch.
    • Finally finished working on #PkgCheck check for missing #PyPI provenance checks.
    • gpy-list-pkg-impls now includes "does this package have tests?" state, can optionally include PythonCompatUpdate results from PkgCheck and output mIRC colors. In other words, our IRC bot will now tell us when dependencies let us port new packages to #Python 3.14, and whether these packages have tests.

  32. 🤚 Free Saturday
    👉 Saturday spent working on Free Software

    Highlights from #Gentoo:
    #Gemato is now compatible with #FreePG and mostly compatible with #SequoiaPGP chameleon.
    • Prepared patches to support FreePG and SequoiaPGP chameleon as "gpg" symlink providers.
    #FlexiBLAS is now enabled by default on ~arch.
    • Finally finished working on #PkgCheck check for missing #PyPI provenance checks.
    • gpy-list-pkg-impls now includes "does this package have tests?" state, can optionally include PythonCompatUpdate results from PkgCheck and output mIRC colors. In other words, our IRC bot will now tell us when dependencies let us port new packages to #Python 3.14, and whether these packages have tests.

  33. 🤚 Free Saturday
    👉 Saturday spent working on Free Software

    Highlights from #Gentoo:
    #Gemato is now compatible with #FreePG and mostly compatible with #SequoiaPGP chameleon.
    • Prepared patches to support FreePG and SequoiaPGP chameleon as "gpg" symlink providers.
    #FlexiBLAS is now enabled by default on ~arch.
    • Finally finished working on #PkgCheck check for missing #PyPI provenance checks.
    • gpy-list-pkg-impls now includes "does this package have tests?" state, can optionally include PythonCompatUpdate results from PkgCheck and output mIRC colors. In other words, our IRC bot will now tell us when dependencies let us port new packages to #Python 3.14, and whether these packages have tests.

  34. 🤚 Free Saturday
    👉 Saturday spent working on Free Software

    Highlights from #Gentoo:
    #Gemato is now compatible with #FreePG and mostly compatible with #SequoiaPGP chameleon.
    • Prepared patches to support FreePG and SequoiaPGP chameleon as "gpg" symlink providers.
    #FlexiBLAS is now enabled by default on ~arch.
    • Finally finished working on #PkgCheck check for missing #PyPI provenance checks.
    • gpy-list-pkg-impls now includes "does this package have tests?" state, can optionally include PythonCompatUpdate results from PkgCheck and output mIRC colors. In other words, our IRC bot will now tell us when dependencies let us port new packages to #Python 3.14, and whether these packages have tests.

  35. 🤚 Wolna sobota
    👉 Sobota z pracą nad Wolnym Oprogramowaniem

    Nowości w #Gentoo:
    #Gemato wspiera #FreePG i w większości #SequoiaPGP chameleon.
    • Przygotowałem wsparcie FreePG i SequoiaPGP chameleon jako dostawców "gpg".
    #FlexiBLAS jest teraz używany domyślnie w ~arch.
    • W końcu dokończyłem sprawdzanie nieużywanych podpisów paczek #PyPI w #PkgCheck.
    • gpy-list-pkg-impls teraz uwzględnia "czy ta paczka ma testy?", może opcjonalnie włączać wyniki PythonCompatUpdate z PkgCheck i stosować kolorki mIRC-a. Innymi słowy, nasz bot IRC-owy będzie podpowiadał nam, kiedy zależności będą umożliwiać portowanie kolejnych paczek na Pythona 3.14, i czy te paczki mają testy.

  36. 🤚 Wolna sobota
    👉 Sobota z pracą nad Wolnym Oprogramowaniem

    Nowości w #Gentoo:
    #Gemato wspiera #FreePG i w większości #SequoiaPGP chameleon.
    • Przygotowałem wsparcie FreePG i SequoiaPGP chameleon jako dostawców "gpg".
    #FlexiBLAS jest teraz używany domyślnie w ~arch.
    • W końcu dokończyłem sprawdzanie nieużywanych podpisów paczek #PyPI w #PkgCheck.
    • gpy-list-pkg-impls teraz uwzględnia "czy ta paczka ma testy?", może opcjonalnie włączać wyniki PythonCompatUpdate z PkgCheck i stosować kolorki mIRC-a. Innymi słowy, nasz bot IRC-owy będzie podpowiadał nam, kiedy zależności będą umożliwiać portowanie kolejnych paczek na Pythona 3.14, i czy te paczki mają testy.

  37. 🤚 Wolna sobota
    👉 Sobota z pracą nad Wolnym Oprogramowaniem

    Nowości w #Gentoo:
    #Gemato wspiera #FreePG i w większości #SequoiaPGP chameleon.
    • Przygotowałem wsparcie FreePG i SequoiaPGP chameleon jako dostawców "gpg".
    #FlexiBLAS jest teraz używany domyślnie w ~arch.
    • W końcu dokończyłem sprawdzanie nieużywanych podpisów paczek #PyPI w #PkgCheck.
    • gpy-list-pkg-impls teraz uwzględnia "czy ta paczka ma testy?", może opcjonalnie włączać wyniki PythonCompatUpdate z PkgCheck i stosować kolorki mIRC-a. Innymi słowy, nasz bot IRC-owy będzie podpowiadał nam, kiedy zależności będą umożliwiać portowanie kolejnych paczek na Pythona 3.14, i czy te paczki mają testy.

  38. 🤚 Wolna sobota
    👉 Sobota z pracą nad Wolnym Oprogramowaniem

    Nowości w #Gentoo:
    #Gemato wspiera #FreePG i w większości #SequoiaPGP chameleon.
    • Przygotowałem wsparcie FreePG i SequoiaPGP chameleon jako dostawców "gpg".
    #FlexiBLAS jest teraz używany domyślnie w ~arch.
    • W końcu dokończyłem sprawdzanie nieużywanych podpisów paczek #PyPI w #PkgCheck.
    • gpy-list-pkg-impls teraz uwzględnia "czy ta paczka ma testy?", może opcjonalnie włączać wyniki PythonCompatUpdate z PkgCheck i stosować kolorki mIRC-a. Innymi słowy, nasz bot IRC-owy będzie podpowiadał nam, kiedy zależności będą umożliwiać portowanie kolejnych paczek na Pythona 3.14, i czy te paczki mają testy.

  39. 🤚 Wolna sobota
    👉 Sobota z pracą nad Wolnym Oprogramowaniem

    Nowości w #Gentoo:
    #Gemato wspiera #FreePG i w większości #SequoiaPGP chameleon.
    • Przygotowałem wsparcie FreePG i SequoiaPGP chameleon jako dostawców "gpg".
    #FlexiBLAS jest teraz używany domyślnie w ~arch.
    • W końcu dokończyłem sprawdzanie nieużywanych podpisów paczek #PyPI w #PkgCheck.
    • gpy-list-pkg-impls teraz uwzględnia "czy ta paczka ma testy?", może opcjonalnie włączać wyniki PythonCompatUpdate z PkgCheck i stosować kolorki mIRC-a. Innymi słowy, nasz bot IRC-owy będzie podpowiadał nam, kiedy zależności będą umożliwiać portowanie kolejnych paczek na Pythona 3.14, i czy te paczki mają testy.

  40. Observation. When using symmetric (password) encryption on files, #GPG is MUCH faster then #SequoiaPGP, at least when using the default CLI interface for each utility on Debian.

  41. Observation. When using symmetric (password) encryption on files, #GPG is MUCH faster then #SequoiaPGP, at least when using the default CLI interface for each utility on Debian.

  42. Observation. When using symmetric (password) encryption on files, #GPG is MUCH faster then #SequoiaPGP, at least when using the default CLI interface for each utility on Debian.

  43. Observation. When using symmetric (password) encryption on files, #GPG is MUCH faster then #SequoiaPGP, at least when using the default CLI interface for each utility on Debian.

  44. Observation. When using symmetric (password) encryption on files, #GPG is MUCH faster then #SequoiaPGP, at least when using the default CLI interface for each utility on Debian.

  45. No to poprawcie mnie, jeżeli się mylę, co do aktualnego stanu #OpenPGP.

    Po pierwsze, jest dawne #RFC4880bis, aktualnie przepychane jako "#LibrePGP", używane przez #GnuPG (i #rnp?), z formatem kluczy "v5" — i zdaje się, że każdy inny projekt spogląda na to z politowaniem.

    Po drugie, jest #RFC9580 z formatem kluczy "v6", używany przez #OpenPGPjs, #SequoiaPGP (i inne narzędzia), ale odrzucony przez GnuPG. I wygląda na to, że jest przepychane z założeniem, że GnuPG ugnie się pod presją.

    Więc mamy dwa niezgodne ze sobą standardy, ze "wspólnym mianownikiem" w postaci zabytkowego #RFC4880; jedne narzędzia przepychają jeden standard i ignorują drugi, a inne decydują się wspierać oba, by pomóc swoim użytkownikom. A #Gentoo ostatecznie utknie z tym, co wspierać będzie GnuPG, bo potrzebujemy kryptografii, która działa na wszystkich wspieranych platformach, a nie tylko tam, gdzie Rust.

    bugs.gentoo.org/963069