This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
blug-canary-1 [2020/02/21 02:08] persmule |
blug-canary-1 [2020/03/27 18:41] BLUG Admin |
||
---|---|---|---|
Line 12: | Line 12: | ||
Hash: SHA512 | Hash: SHA512 | ||
- | BEIJING GNU/LINUX USER GROUP CANARY (2/3) | + | BEIJING GNU/LINUX USER GROUP CANARY (1/3) |
==================================== | ==================================== | ||
- | Issued for February | + | Issued for March 2020. |
Don't just trust the contents of this file blindly! Verify the | Don't just trust the contents of this file blindly! Verify the | ||
Line 32: | Line 32: | ||
one is located at: | one is located at: | ||
- | * https:// | + | * https:// |
It is possible that the signatures are not updated at the same time, | It is possible that the signatures are not updated at the same time, | ||
Line 70: | Line 70: | ||
10. We plan to publish the next of these canary statements in the first three | 10. We plan to publish the next of these canary statements in the first three | ||
- | weeks of March 2020. Special note should be taken if no new canary is published | + | weeks of April 2020. Special note should be taken if no new canary is published |
by that time or if the list of statements changes without plausible explanation. | by that time or if the list of statements changes without plausible explanation. | ||
Line 76: | Line 76: | ||
~~~~~~~~~~~~~~~~~~~~~~~~ | ~~~~~~~~~~~~~~~~~~~~~~~~ | ||
- | 1. Since mid-October, | + | 1. Due to personal reasons, biergaizi (0xFAD3EB05E88E8D6D) was not available |
+ | and couldn' | ||
+ | was not a result of any incident. All statements of the warrent canary documents | ||
+ | are still valid. A canary for February, 2020 has been signed by biergaizi | ||
+ | retroactively. | ||
+ | |||
+ | 2. Since mid-October, | ||
expired. A new key, 0xEDFFE248ECFACDE3C805906804A40D21DBB89B60, | expired. A new key, 0xEDFFE248ECFACDE3C805906804A40D21DBB89B60, | ||
created and uploaded to https:// | created and uploaded to https:// | ||
this keyserver. | this keyserver. | ||
- | 2. The new key will be used by persmule to sign future warrant canary | + | 3. The new key will be used by persmule to sign future warrant canary |
documents. You can verify the signature by crosschecking the other two | documents. You can verify the signature by crosschecking the other two | ||
documents signed by biergaizi and wnereiz for consistency. | documents signed by biergaizi and wnereiz for consistency. | ||
- | 3. Due to this key rollover, the October message was not signed by persmule. | + | 4. Due to this key rollover, the October message was not signed by persmule. |
This did/does not indicate a security incident, all of the statements above | This did/does not indicate a security incident, all of the statements above | ||
were valid, and are still valid. | were valid, and are still valid. | ||
- | 4. Recent attacks on OpenPGP keyservers have raised great security concerns | + | 5. Recent attacks on OpenPGP keyservers have raised great security concerns |
within the community, as a countermeasure, | within the community, as a countermeasure, | ||
not published to the https:// | not published to the https:// | ||
Line 97: | Line 103: | ||
for a 3rd-party to verify the canary document signed by persmule. | for a 3rd-party to verify the canary document signed by persmule. | ||
- | 5. We are looking for a solution. But for now, we decided that the best | + | 6. We are looking for a solution. But for now, we decided that the best |
option is starting publishing new canary documents using the new key. | option is starting publishing new canary documents using the new key. | ||
As a temporary measure, you can check the canary documents signed by | As a temporary measure, you can check the canary documents signed by | ||
Line 104: | Line 110: | ||
by them as valid. | by them as valid. | ||
- | 6. This effectively reduced the number of signers to two people. It reduces | + | 7. This effectively reduced the number of signers to two people. It reduces |
the level of confidence, but currently there is no alternative option yet. | the level of confidence, but currently there is no alternative option yet. | ||
- | 7. Once the technical problem of OpenPGP public key without User-ID is | + | 8. Once the technical problem of OpenPGP public key without User-ID is |
resolved, you can check the previous signatures retroactively, | resolved, you can check the previous signatures retroactively, | ||
would effectively restore the level of confidence. You can archive | would effectively restore the level of confidence. You can archive | ||
Line 113: | Line 119: | ||
ensure no data tampering has occured. | ensure no data tampering has occured. | ||
- | 8. Unlike persmule, biergaizi and wnereiz' | + | 9. Unlike persmule, biergaizi and wnereiz' |
but the Key-IDs have been changed to its full fingerprint format in the | but the Key-IDs have been changed to its full fingerprint format in the | ||
canary document for clarity. | canary document for clarity. | ||
- | 9. When new information is available, it will be published in the " | + | 10. When new information is available, it will be published in the " |
Announcements" | Announcements" | ||
Line 124: | Line 130: | ||
$ rsstail -1 -n5 -N -u https:// | $ rsstail -1 -n5 -N -u https:// | ||
- | US intelligence chief replaced 'after clash with Donald Trump over Russian bid to boost re-election' | + | What essential shops are open during the coronavirus lockdown? |
- | Windrush draft report that called Home Office institutionally racist 'was watered down' | + | What is coronavirus, |
- | Grace Millane killer sentenced to life in prison in New Zealand for murder of British backpacker | + | Friday |
- | | + | How does a coronavirus home test kit work, and how do I get one? |
- | | + | How can I join the NHS coronavirus volunteer army, and what would I do? |
$ rsstail -1 -n5 -N -u https:// | $ rsstail -1 -n5 -N -u https:// | ||
- | | + | |
- | | + | For France, Coronavirus Tests a Vaunted Health Care System |
- | A Police State With an Islamist Twist: Inside Hifters Libya | + | |
- | U.S. and Allies Blame Russia for Cyberattack on Republic of Georgia | + | Australia Says Goodbye to the Worlds Longest Boom |
- | Suspect Arrested in Stabbing | + | Migrant Farmworkers Whose Harvests Feed Europe Are Blocked |
$ date -R -u | $ date -R -u | ||
- | Fri, 21 Feb 2020 02:01:48 +0000 | + | Fri, 27 Mar 2020 18:29:16 +0000 |
-----BEGIN PGP SIGNATURE----- | -----BEGIN PGP SIGNATURE----- | ||
- | iQEzBAEBCgAdFiEEwonfPqgFyacM7J3iwYAPuUJ74CEFAl5POx0ACgkQwYAPuUJ7 | + | iQIzBAEBCgAdFiEEJVIRsjlaWj4OSKDx+tPrBeiOjW0FAl5+R7kACgkQ+tPrBeiO |
- | 4CFEBAgAzvltWGMHElouFtnWIfb5EU0LL9Zlfhg2V8KZ/fe+bL6mKw1H9gxwTo08 | + | jW2IiA// |
- | oi+GBRYQz8l4AVU1YTDO2aZNUYATIxsiBhFAEpGe1xoh3ui/9bZbUAtMZBHfoHK3 | + | utZ3UNsHxCsB/ |
- | ff6UnbfbHZOWUyfh03UNllZ3cdVBzQ9c64LrFlPmu2zNaif2/QTvESOpuDfNwRoR | + | RARTmX07Qa+g+UtZlrRwXvAIk/SPG725SSH5uhVjp+XtPXU/ |
- | CDsOg434SMB5T8mruLDy7NPyqey+03BpkhEMalskn6ra8FQWmct7q2xVfkB5HRhy | + | tbiEgGOzbj+nbAoNOvCD8KA7NGAT8togJgru/KrNNpfpMR7N5WmypEQA79XGF/ |
- | l4SGWGNI8eE9+atyH/wKM46Ytdx0zgBCHQ95yeWa4kwAn6EP9kYMEqMRCSAdHauW | + | J5KwwwQtW38ACLy/ |
- | Mp4GAH94izVkxwDQ6R7X9o2WdmZh7w== | + | mHXJUaIT3LkXjbn9xFhAdRtwlOMrnt8Nkr6AKIe+ERn4J8yI1dK3q2n2S+0ogvmU |
- | =1OSg | + | vQ00fTjNfce324sky4/ |
+ | 6m5k/ | ||
+ | WuXVNjXM69yV0YUW2S2twVDRA7XKoozmMR2EC6TaT1pF5kJ8YB5+QRcr82z8CMDF | ||
+ | puqkABkwhLbAFPnCx44KKpnpQWh+xB/ | ||
+ | nTefGOsjjSqALbnq2I0Zfn4H8UmhQYZTuPm2khpXjQXSY3lUPR0= | ||
+ | =NgPa | ||
-----END PGP SIGNATURE----- | -----END PGP SIGNATURE----- | ||
</ | </ |