Explore >> Select a destination
|
You are here 
|
dkg.fifthhorseman.net | ||
| | | | |
lwn.net
|
|
| | | | | [AI summary] The discussion revolves around the limitations and vulnerabilities of the Web of Trust (WoT) in OpenPGP systems. Key points include: 1) The WoT is inherently broken due to scalability issues and lack of user-friendliness, as noted by Werner Koch. 2) There is a proposal to require signers to prove ownership of the private key before uploading signatures to keyservers, which could reduce spam and invalid signatures. 3) The process of distributing third-party certifications is complex and requires better tooling and user experience design. 4) Concerns about security vulnerabilities in OpenPGP, such as NULL pointer dereferences and potential for exploitation, are raised. 5) Alternatives like Trust On First Use (TOFU) are suggested, but the community... | |
| | | | |
gwolf.org
|
|
| | | | | ||
| | | | |
paul.fawkesley.com
|
|
| | | | | ||
| | | | |
www.morling.dev
|
|
| | | As a software engineer, I like to automate tedious tasks as much as possible. The deployment of this website is no exception: it is built using the Hugo static site generator and hosted on GitHub Pages; so wouldn't it be nice if the rendered website would automatically be published whenever an update is pushed to its source code repository? | ||
