This Blog Is Not For Reading

A blog, just like any blog, only more so

  • Subscribe

  • Categories

  • RSS Bob Jonkman’s Microblog

    • New comment by bobjonkman 29 November 2022
      @clacke Our #KWNPSA user group chatted with the #GetTogether developer a few months ago. He said demand for self-hosted G2G instances was minimal, and event interchange even more minimal. So #ActivityPub support on G2G has stalled, and he considers G2G more or less stable and mature.
    • New comment by bobjonkman 28 November 2022
      @lnxw48a1 ...then to Debian with a MATE desktop in 2020. Far less faffing about, finally being productive. Sometimes...
    • Delete 28 November 2022
      Bob Jonkman deleted notice {{tag:gs.jonkman.ca,2022-11-28:noticeId=1106500:objectType=comment}}.
    • New comment by bobjonkman 28 November 2022
      @lnxw48a1 I switched to Ubuntu-MATE when they insisted in the Unity desktop, then to Debiab
    • New comment by bobjonkman 28 November 2022
      @lnxw48a1 Ubuntu 22.04 has way too much reliance on snaps. Can't even get a regular install of Firefox, f'rinstance, only a snap.
    • Delete 28 November 2022
      Bob Jonkman deleted notice {{tag:gs.jonkman.ca,2022-11-28:noticeId=1106496:objectType=comment}}.
    • Favorite 12 November 2022
      bobjonkman favorited something by lnxw48a1: Oh, look! Evan has his own #Mastodon server now. https://prodromou.pub/@evan
    • bobjonkman repeated a notice by lnxw48a1 12 November 2022
      RT @lnxw48a1 Oh, look! Evan has his own #Mastodon server now. https://prodromou.pub/@evan
    • New note by bobjonkman 30 September 2022
      That "aura" around bright objects is what I saw when I first got a cataract (clouding of the lens). It wasn't bad at first, and only in one eye, so I let it go until my vision was totally obscured in that eye. Don't do that. Get your eyes checked, and maybe a referral to […]
    • Favorite 30 September 2022
      bobjonkman favorited something by hypolite: Ok, that’s what I thought, thank you for the explanations. When I wear the new glasses, anything beyond a couple of feet is doubled until my eyes adjust which takes more time than with my current glasses, and then it still is almost imperceptibly blurry, although the comparison between the […]

Preparing for the Keysigning Cryptoparty, 2 Dec 2013

Posted by Bob Jonkman on 24th November 2013

Key Pair

Cryptoparty like it’s 31 December 1983!

At the next KWLUG meeting on Monday, 2 December 2013 I’ll be demonstrating how to do e-mail encryption with Thunderbird and Enigmail. If you’ve never used e-mail encryption before then bring a laptop, and we’ll create keys and learn how to use them. We’ll save the lesson with pointy sticks for another day.

For those people who already have GnuPG/PGP keys I’m also hosting a Formal Keysigning. Participants will introduce themselves, read their GnuPG key fingerprint, then anyone else is invited to vouch for that person:

Bob: “I’m Bob Jonkman, and my GnuPG fingerprint is 04F7 742B 8F54 C40A E115 26C2 B912 89B0 D2CC E5EA”

Andrew: “I’ve known Bob since the early days, and that’s really him”

This is a great way to expand your Web Of Trust to include people whose keys you might not otherwise sign (because you don’t know them very well, or they only have ID issued by an authority you don’t like). With all these introductions and vouchings the chance of someone misrepresenting their identity is vanishingly small, so you can trust that the key fingerprint they read is really associated with that person.

To make this process go smoothly I’d like to have a printout of all the participants’ keyIDs, UserIDs, and key fingerprints, which I’ll distribute at the keysigning. That way you can just check off each name/keyID/fingerprint as people read them, and then sign their keys later at your leisure. But to get that printout I’ll need the public key of anyone who would like to participate in the keysigning.

If you’re using Thunderbird and Enigmail then open the Key Management window, right-click on your key and select “Send Public Keys by E-mail”, and send it to me ( bjonkman@sobac.com )

If you’re a command-line weenie then use

gpg --export 0xYOURKEYID > 0xYOURKEYID-public-key-for-YOURNAME.pgp

and send that file 0xYOURKEYID-public-key-for-YOURNAME.pgp to me (substitute your actual keyID and actual name as needed).

Of course, I’d prefer signed, encrypted e-mail, but public keys are public (so encryption isn’t necessary), and public keys should already be self-signed anyway.

Unfortunately, if you’re creating your keys for the first time at the meeting you won’t be able to send me anything now. You can still participate in the vouching process, and we’ll have an informal keysigning after the formal keysigning, where all you need to do is read your fingerprint straight from your computer and those people who already know you can sign your key.

I’m still working on the procedures for the formal keysigning; you can see the work in progress (and contribute!) on the Formal Keysigning page on the Wiki.

Thanx, and hope to see you on Monday, 2 December 2013!

–Bob, who is the Keymaster. Who will be the Gatekeeper?

The Cryptoparty keypair logo from the Cryptoparty Artwork repository on GitHub is available in the CC0Public Domain.

Tags: , , , , , , , , , , , , , , , , , , ,
Posted in email, PGP/GPG, privacy | Comments Off on Preparing for the Keysigning Cryptoparty, 2 Dec 2013

 
Better Tag Cloud