@hardtech @revengeday @Tutanota Just as a FYI, note that @Tutanota doesn't actually offer standard encrypted emails ( #OpenPGP, #GPG or #PGP which has been used for decades): https://tuta.com/encryption

You of course don't notice this if you only send emails between Tuta users, but if you try to send an encrypted email externally, well then the whole thing breaks down and you end up having to arrange a secure way of sending a password to the recipient: https://tuta.com/support#encrypted-emails-external

P… mais ! en plus d'être valide SPF/DKIM/DMARC/ARC les spammeurs signent leurs messages avec #OpenPGP !
#spam #mail

X-Spamd-Result: …
SIGNED_PGP(-2.00)[];
ARC_ALLOW(-1.00)[xxx.xxx:s=dkim:i=1];
DMARC_POLICY_ALLOW(-0.50)[xxx.xxx,quarantine];
R_SPF_ALLOW(-0.20)[+mx];
R_DKIM_ALLOW(-0.20)[xxx.xxx:s=dkim];
MIME_GOOD(-0.20)[multipart/signed,multipart/mixed,text/plain];

P… mais ! en plus d'être valide SPF/DKIM/DMARC/ARC les spammeurs signent leurs messages avec #OpenPGP !
#spam #mail

X-Spamd-Result: …
SIGNED_PGP(-2.00)[];
ARC_ALLOW(-1.00)[xxx.xxx:s=dkim:i=1];
DMARC_POLICY_ALLOW(-0.50)[xxx.xxx,quarantine];
R_SPF_ALLOW(-0.20)[+mx];
R_DKIM_ALLOW(-0.20)[xxx.xxx:s=dkim];
MIME_GOOD(-0.20)[multipart/signed,multipart/mixed,text/plain];

🔐 Every unencrypted email is readable by 10+ entities and stored forever.

Web Key Directory (WKD) changes this: automatic encryption using your domain name. No manual keys. No central servers. Just cryptographic certainty.

WKD makes encrypted email as simple as HTTPS made web browsing secure.

https://www.nicfab.eu/en/posts/wkd2/

#WebKeyDirectory #WKD #EmailEncryption #Privacy #InfoSec #Cryptography #OpenPGP

WKD-Java provides an API and CLI for querying #OpenPGP keys from the WebKeyDirectory.

Release 0.1.3 depends on PGPainless 2.0.0, cert-d-java 0.2.3 and cert-d-pgpainless 0.2.3.

https://codeberg.org/PGPainless/wkd-java

I just released #PGPainless 2.0!

The new release comes with support for #OpenPGP v6 ( #rfc9580) leveraging #BouncyCastle|s new high-level OpenPGP API internally.

The API saw substantial changes compared to the 1.7 release line. Among others, it migrated away from the singleton pattern towards configurable API instances.

You can download the (Linux_x86_64) native CLI binary binary here: https://github.com/pgpainless/pgpainless/releases/tag/2.0.0

🔐 Every unencrypted email is readable by 10+ entities and stored forever.

Web Key Directory (WKD) changes this: automatic encryption using your domain name. No manual keys. No central servers. Just cryptographic certainty.

WKD makes encrypted email as simple as HTTPS made web browsing secure.

https://www.nicfab.eu/en/posts/wkd2/

#WebKeyDirectory #WKD #EmailEncryption #Privacy #InfoSec #Cryptography #OpenPGP

RPM 6.0 released with support for RPM v4 and v6 packages, support for multiple OpenPGP signatures per package, support for OpenPGP v6 and PQC keys and signatures, enforced signature checking, various rpmkeys enhancements

https://rpm.org/releases/6.0.0

#rpm #packagemanager #linux #linuxpackaging #openpgp #freesoftware

I just released #PGPainless 2.0!

The new release comes with support for #OpenPGP v6 ( #rfc9580) leveraging #BouncyCastle|s new high-level OpenPGP API internally.

The API saw substantial changes compared to the 1.7 release line. Among others, it migrated away from the singleton pattern towards configurable API instances.

You can download the (Linux_x86_64) native CLI binary binary here: https://github.com/pgpainless/pgpainless/releases/tag/2.0.0

RPM 6.0 released with support for RPM v4 and v6 packages, support for multiple OpenPGP signatures per package, support for OpenPGP v6 and PQC keys and signatures, enforced signature checking, various rpmkeys enhancements

https://rpm.org/releases/6.0.0

#rpm #packagemanager #linux #linuxpackaging #openpgp #freesoftware

Einblicke in das #Datenspuren-Programm

Heute: Irgendwas mit Nitrokeys - #Workshop und Keysign-Party

https://talks.datenspuren.de/ds25/talk/W3JBDH/

In ihrem Workshop betreut @span senf Menschen beim Einrichten von Nitrokeys und danach kann gegenseitig mit den #OpenPGP-Schlüsseln signiert werden.

Wann? 20. September, 15:15 bis 17:00 Uhr
Wo? Kleiner Saal

Komplettes Programm ansehen: https://talks.datenspuren.de/ds25/schedule/

P.S.: Die Nitrokeys sollten im Vorfeld bei Nitrokey beschafft werden (ca. 55€).

#Datenspuren2025#Datenspuren25

Einblicke in das #Datenspuren-Programm

Heute: Irgendwas mit Nitrokeys - #Workshop und Keysign-Party

https://talks.datenspuren.de/ds25/talk/W3JBDH/

In ihrem Workshop betreut @span senf Menschen beim Einrichten von Nitrokeys und danach kann gegenseitig mit den #OpenPGP-Schlüsseln signiert werden.

Wann? 20. September, 15:15 bis 17:00 Uhr
Wo? Kleiner Saal

Komplettes Programm ansehen: https://talks.datenspuren.de/ds25/schedule/

P.S.: Die Nitrokeys sollten im Vorfeld bei Nitrokey beschafft werden (ca. 55€).

#Datenspuren2025#Datenspuren25

Any software that needs to encrypt data using OpenPGP, or to verify an OpenPGP signature on data, should use the stateless OpenPGP interface, or SOP, which is provided for a number of OpenPGP implementations. Using any other interface is going to lock in the software to that implementation.

Also, SOP is lovely to use from another program. It's designed to be nice to use from a program.

https://openpgp.foo/learn/sop/

#OpenPGP#SOP#StatelessOpenPGP

Any software that needs to encrypt data using OpenPGP, or to verify an OpenPGP signature on data, should use the stateless OpenPGP interface, or SOP, which is provided for a number of OpenPGP implementations. Using any other interface is going to lock in the software to that implementation.

Also, SOP is lovely to use from another program. It's designed to be nice to use from a program.

https://openpgp.foo/learn/sop/

#OpenPGP#SOP#StatelessOpenPGP