- Sep 02, 2024
-
-
Sheogorath authoredCommands used: ``` gpg --export-options export-clean --export-filter keep-uid=mbox=sheogorath@shivering-isles.com --export sheogorath@shivering-isles.com > .well-known/openpgpkey/hu/dourxutq7n1q3d1htcp1ezfdt6kee17m gpg --export --armor 286791FB6648539775DB31B8FCB98C2A3EC6F601 > openpgp/0xFCB98C2A3EC6F601.txt ```
-
- Sep 03, 2023
-
-
Sheogorath authored
Commands used: ``` gpg --export-options export-clean --export-filter keep-uid=mbox=sheogorath@shivering-isles.com --export sheogorath@shivering-isles.com > .well-known/openpgpkey/hu/dourxutq7n1q3d1htcp1ezfdt6kee17m gpg --export --armor 286791FB6648539775DB31B8FCB98C2A3EC6F601 > openpgp/0xFCB98C2A3EC6F601.txt ```
-
- Sep 02, 2022
-
-
Sheogorath authored
-
Sheogorath authored
-
- Sep 02, 2021
-
-
Sheogorath authored
-
- Aug 29, 2020
-
-
Sheogorath authored
-
- Sep 04, 2019
-
-
Sheogorath authored
In order to generat the key file standard conform it should only contain my uid. This can be done using this command: gpg --export-options export-clean --export-filter keep-uid=mbox=sheogorath@shivering-isles.com --export sheogorath@shivering-isles.com > .well-known/openpgpkey/hu/dourxutq7n1q3d1htcp1ezfdt6kee17m The new key will be stored on a smartcard.
-
- Jul 22, 2019
-
-
Sheogorath authored
The WKD draft states: > The mail provider MUST make sure to publish a key in a way that only the mail address belonging to the requested user is part of the User ID packets included in the returned key. Other User ID packets and their associated binding signatures NUST be removed before publication. So my original way of publishing them wasn't correct. This patch should fix the keys.
-
- Mar 31, 2019
-
-
Sheogorath authored
Updating expire date for master and sub-key. Also add revokation of my old key which should help to spread it.
-
- Mar 22, 2019
-
-
Sheogorath authored
This should allow discovery of my real-name mail address
-
- Mar 05, 2019
-
-
Sheogorath authored
Prevent key from expiring
-
- Feb 05, 2019
-
-
Sheogorath authored
As it turns out an empty file would be more correct. the `mailbox-only` polcy says that no additional information besides the mailbox name (e.g. me@example.com) are allowed in your GPG key identity. This patch corrects those statements in the article and fixes my own policy. Also here thanks to wiktor to pointing that out: https://mastodon.social/@wiktor/101539884157919705
-
- Jan 10, 2019
-
-
Sheogorath authored
By WKD standard we need to provide a policy file. This is done by this patch. It provides a prolicy file explaining that this WKD server only accepts keys from mailboxes that are hosted on it. Details: https://www.ietf.org/id/draft-koch-openpgp-webkey-service-07.txt
-
Sheogorath authored
WKD, standing for Web Key Directory, is a mechanism introduced by GPG to discover GPG keys dynamically based on email addresses that are provided. It works by generating a hash of the username part of the mail address and then discovering this hash in the `.well-known/openpgpkey` directory. This patch adds my personal key to my blog container, so people can discover me by my email address. To add your own key on your setup please export it the following: ```shell gpg --with-wkd-hash --fingerprint --keyid-format 0xlong <mail address> gpg --no-armor --export 0x<keyid> > .well-known/openpgpkey/hu/<hash> ``` A more detailed guide can be found here: https://jms1.net/Using-WKD-to-Publish-GPG-Public-Keys.md Some more details: https://gnupg.org/blog/20160830-web-key-service.html https://keyserver.mattrude.com/guides/web-key-directory/
-