[ Date Index ]
[ Thread Index ]
[ <= Previous by date /
thread ]
[ Next by date /
thread => ]
Re: [LUG] Public Key Servers
- To: list@xxxxxxxxxxxxx
- Subject: Re: [LUG] Public Key Servers
- From: comrade meowski <mr.meowski@xxxxxxxx>
- Date: Sat, 8 Aug 2020 17:23:34 +0100
- Arc-authentication-results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=n32mGIT2Mx3HRi8KYI012qnNvPk5ic8k7ALiuexl0aQ=; b=CfQOhqswjGQUWY6zijmff8ehOeFdri4iyNWIOMyP0m4lXWWQhdvjcYUZaPFEPc4GWkxXY+2pmBDPdR42C7/FYyOYwuexvlEfgRQ0Bzd4vxU1Yil3vpAeP3MC2y72h0inml78drNFC4FrUK9hqACiq3WC1wzQw9X9Bq6J0o8i6eQSiKwbgDForzMfZkb3fkT3f2qKGBCCJ+xtstCItVx1LX+IeVlvcYAli5lBWmcmxObnIFyfSZ8foufC3aACJTIaLlK2ZN2LzpfHcvwzPv8OS1PrNZdDmdT8qdKj121BJ968QlcGa2tYGf/pNa4mtm8usdfaO4flEheYnFAizWRODg==
- Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=O14X3ZvfH1D9cNhWWBhF0m1fTt5ytIPjNxAFb9xk5c0K0jTPqljjvdNsAvvv/irwvUxUVNUxoiC1BMT6bb0+Y0EFJwORm4Zn/U3oaXmayh7d6Ac3vl9TjATVTLwM8VJUScL5cni7HQEHDTMjQldkytb0HBksrni3epw4eoz9kULxyVHUEd7dQulQhPpSwiEpVVlLXli2uKbgNsTRGyayKKob4Ls3YKPZbq3va5VE0LjUr4T+rdi18662QRhUBFyYS9Ek3Ev2EyrpDBsVHGK/nZozYGjzxDO77Al1uaXy+OXU/Ci1ZW537HQcXvPi/SGTuVZBdKpl4KlN2D4TcpZy8A==
- Content-language: en-GB
- Delivered-to: dclug@xxxxxxxxxxxxxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=dcglug.org.uk; s=1586423162; h=Sender:Content-Type: Content-Transfer-Encoding:Reply-To:List-Subscribe:List-Help:List-Post: List-Unsubscribe:List-Id:Subject:MIME-Version:In-Reply-To:Date:Message-ID: From:References:To:Cc:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Owner:List-Archive; bh=u56vuEYNlMp88srzq0KQAmHoZ0jJE6OZ/5Ap8llwJRA=; b=0p1GHvosbXZs9w3n6EGjHSKa4 AxJX7YeWgfMx4KVbCpAbmZciRPhqapw6AJEOEgI8MveietGV19RzC/F9UQsmfE39AGVGcxKf4w5C3 zWQjxizj3Svf1cHvBz86wVDQ15uKDVaJ8eEATElrWdr6dMw/K6QX/pJLq0bCSm7zU0St8=;
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=live.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=n32mGIT2Mx3HRi8KYI012qnNvPk5ic8k7ALiuexl0aQ=; b=fBvcSWhIKdVVHtpfeXZ2NfonRAlNMEJ9WCvO4z+KL7wqAmnmQtdZn51UJb1nfQ73+hcc5ZiZdCuEwbi7/oOZzpZOupfZmGPmeFR1tdpmpszqOhwFb4VQfna0za0RpzO9m5BTextB1BeeLBqSxVOl3WqZmU7J9cr/Bs7BK6CeO9ZSoPff/96bWuDRopBAYL7AXT+PrdaavV+bkVKNPLpArrk/cQhz9jXE2p8TKvUulhFDBAbtHEHZ5mRMEWW+S2PR2Yne7uI1D/XdMrcSwwks3dzcqXcMZgh7OsJYZCVaLVv1kF+jkYhlGQkWZSNbpiAoAC9eGqUoJpUIpUk5/YvzmA==
On 08/08/2020 17:00, maceion@xxxxxxxxx wrote:
To DCGLUG members
Public Key Servers.
20200808 Some time ago, when I queried a public key (expired), I was
given a site from to download it; with comments about key servers being
unreliable.
While researching a matter for a PRC friend, I came across the Beijing LUG.
Interestingly their warrant canary shows a lot of stuff about obtaining
correct key from key servers to check their warrant canary signers.
I read and learnt some things. (PS I checked one key,
PPS They are very wary about membership and check in person before
joining and if members asked to show smartphone Corvid-19 tracer, which
can give location history, they abandon indoor meeting (usually a cafe
with WiFi announced on morning of meeting) and meet in open air
Any comment from you knowledgeable folk about key servers?
Yeah, proper security is hard even if you know what you're doing.
Hardly surprising considering the level of their chief "enemy" is full
on Nation State but the BLUG are having a pretty good go at it, I'm
impressed. I'm sure your friend knows this all too well but when the
adversary is more than capable of disappearing people off the streets
it's gonna take a lot more than a warrant canary and some PGP keys to
keep them out of trouble.
It's not difficult to compromise key signers and warrant holders if
you're prepared to literally hold a gun to someone's head...
--
The Mailing List for the Devon & Cornwall LUG
https://mailman.dcglug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq
