-
error: '/var/cache/pacman/pkg/chaotic-keyring.pkg.tar.zst': paquete no válido o dañado (firma PGP)
error: '/var/cache/pacman/pkg/chaotic-mirrorlist.pkg.tar.zst': paquete no válido o dañado (firma PGP…
-
### Description
Currently it is not possible to verify the authenticity of the downloads from sourceforge.net, github.com, or phplist.org because the releases are not cryptographically signed.
T…
-
We should consider adding validation of the PGP payload downloaded from the SecureDrop server in sd-app before sending to sd-gpg.
This will ensure the payload is valid, and that the sd-gpg vm has t…
emkll updated
2 months ago
-
Hello,
when i restart my server all PGP Keys what have been saved before are gone, private as well as public, i need to copy the key each time again to be able to decrypt/encrypt/sign messages.
Pleas…
-
The use of PGP for signing comments is a good and simple way to improve the confidence of the authenticity of the commits.
It is considered good practice as it makes it very hard to impersonate the…
-
I am a heavy GPG user, and I belive it's a PITA for a mass audience. But it's almost the only game in town for hardware keys support, so security-minded people will probably want to use that.
GPG s…
-
If you've ever had to work with the GPGME code in ostree you will know that it is pretty painful. Furthermore, the implementation of GPGME is that it literally just runs the `gpg` CLI, and the `gpg` C…
-
a bit, I guess?
-
I'm considering migrating my postfix+devcot+roundcube to PEPS but I'd like to ask before regarding this point:
I'm fed up about SPAM, and I want to go for sign-your-emails-or-forget-me way. I already…
-
```
This proposal is to have the APG application allow you to edit a PGP key
on the device.
```
Original issue reported on code.google.com by `JonTheNiceGuy` on 30 Mar 2010 at 12:49