This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
blug-canary-1 [2023/04/29 12:13] BLUG Admin |
blug-canary-1 [2024/03/30 20:52] (current) BLUG Admin |
||
---|---|---|---|
Line 15: | Line 15: | ||
==================================== | ==================================== | ||
- | Issued for April 2023. | + | Issued for March 2024. |
Don't just trust the contents of this file blindly! Verify the | Don't just trust the contents of this file blindly! Verify the | ||
Line 70: | Line 70: | ||
10. We plan to publish the next of these canary statements in the first three | 10. We plan to publish the next of these canary statements in the first three | ||
- | weeks of May 2023. Special note should be taken if no new canary is published | + | weeks of April 2024. Special note should be taken if no new canary is published |
by that time or if the list of statements changes without plausible explanation. | by that time or if the list of statements changes without plausible explanation. | ||
Line 80: | Line 80: | ||
~~~~~~~~~~~~~~~~~~~~~~~~ | ~~~~~~~~~~~~~~~~~~~~~~~~ | ||
- | None. | + | 1. We've found a workaround for importing keys on https:// |
+ | without User-ID. The instructions for verifying persmule' | ||
+ | been added. | ||
Canary Verification Procedures | Canary Verification Procedures | ||
Line 95: | Line 97: | ||
2. To verify persmule' | 2. To verify persmule' | ||
- | a. Unfortunately, | + | a. Due to the previous |
- | | + | the OpenPGP |
- | countermeasure, | + | |
- | | + | |
- | it's impossible to import a OpenPGP public key without User-ID | + | |
- | | + | |
- | b. We are looking for a solution. But for now, you should check the | + | b. Obtain the dummy public key from any traditional OpenPGP Keyserver, |
- | | + | such as https:// |
- | | + | |
- | to two people. It reduces | + | |
- | | + | |
+ | technical problem, Using "gpg --recv-key" | ||
+ | | ||
- | c. Once the technical problem of using a public key without | + | c. This is a special dummy public key with its User-IDs and subkeys stripped |
- | | + | that we specifically created, leaving only a " |
- | | + | E-mail address, " |
- | | + | |
- | | + | |
+ | d. Next, with the stub key already imported, obtain the public key from | ||
+ | https:// | ||
+ | | ||
+ | now possible to import the https:// | ||
+ | |||
+ | e. Use the latest GnuPG in most operating system, the signatures made by | ||
+ | | ||
+ | other systems should work just fine, but not Fedora. The subkeys contains | ||
+ | signatures made with Brainpool curves, which are disabled on Fedora due to | ||
+ | potential patent-licensing problems, causing a " | ||
+ | | ||
3. To verify vimacs' | 3. To verify vimacs' | ||
Line 126: | Line 140: | ||
$ rsstail -1 -n5 -N -u https:// | $ rsstail -1 -n5 -N -u https:// | ||
- | Surgeons carrying out operations just once a fortnight | + | Thursday evening news briefing: Michael Goves no-fault evictions ban thrown into doubt |
- | Dog walker ' | + | Wednesday evening news briefing: Landlords could be banned from raising rent under radical SNP crackdown |
- | Couple ordered | + | Tuesday evening news briefing: Biden vows to move heaven and earth to rebuild Baltimore bridge |
- | Watch: The Coronation souvenirs - the good, the bad and the ugly | + | Monday evening news briefing: UK unveils sanctions after MPs targeted by China |
- | ChatGPT has better bedside manner than doctors, study finds | + | Thursday evening news briefing: Waspi scandal compensation branded a betrayal |
$ rsstail -1 -n5 -N -u https:// | $ rsstail -1 -n5 -N -u https:// | ||
- | Russian Missile Strikes on Civilian Buildings Kill at Least 25 in Ukraine | + | How African Immigrants Have Revived a Remote Corner |
- | U.S. Begins Overland Evacuation | + | A Stork, a Fisherman |
- | The Shining Promise | + | Kings College Chapel, 438 Solar Panels |
- | Spain Bakes in Summer-Like Heat, and Worries About What Comes Next | + | Troop-Starved Ukrainian Brigades Turn to Marketing to Attract Recruits |
- | Lord Commander of the DMZ Has Seen It All on the Korean Frontier | + | |
$ date -R -u | $ date -R -u | ||
- | Fri, 28 Apr 2023 21:06:47 +0000 | + | Sat, 30 Mar 2024 20:51:12 +0000 |
-----BEGIN PGP SIGNATURE----- | -----BEGIN PGP SIGNATURE----- | ||
- | iQIzBAEBCgAdFiEEJVIRsjlaWj4OSKDx+tPrBeiOjW0FAmRMNXsACgkQ+tPrBeiO | + | iQIzBAEBCgAdFiEEJVIRsjlaWj4OSKDx+tPrBeiOjW0FAmYIe28ACgkQ+tPrBeiO |
- | jW10RA/+J33Xii6jeqjszAW3q+xh8Y5qQDgFstJyEbUDVcIUNuMwaOvN5PmrOnXY | + | jW1yghAAkUYMlYuGg3ihG1uBw417y2oNvBGvCk4HYtIElrbd2DNL/ |
- | TVXRQHX2pUaVIbfLpJopqth3PpZmiNUP1ytjGqNwkwYqmpYpTGb8VmxmZC/oaToh | + | rKMBgGtYHk/xGj9lZEmt1te6Mj+w+dS91ykoHAlNCAQ6RdNe9AQLvQd2Up9JlSTr |
- | XUG7ewxYdZ6ofEpHdHj3Mk5BJUKB5dqtySb4hAINJ+8rky7CvjPs5Arf5GrloGCZ | + | obl/ |
- | ebVb1lGsSIQB4PZuV3eM6waYDIkQdsau7p04VlOUFryMoOVu/mBUXZeMlxPcYoWi | + | JH7EsqEUBpCdrzyv7uYWLNOru2t6IvSXNcjB1Ay5CpwO3Bchu8EIhp433Wd5x/yb |
- | J/XnY98ZaVg6fLNbc1TiizfMl/ | + | xTPKkdC8yuusZCR/zLIUX7cJWYH7VH+chWf1RxAlkNQ5CCd51I741wY7/ |
- | 2lZaAdvZ8nqqfFTJZb7pw7XQUx82+jT9hrfKoaccRcDScVXzs9rePhD7d3AiHeLh | + | r4wib3+hnWYIktr4GC7QSeRhxocJcMHuKHWz6SgOQWqQDf8dYRiPGr72xtiZD2w9 |
- | ZyXee8q2hIq2XISVTaMok6WPcm7g47N8EJVAAPJpgkxQ1Z0c+frJfJEIxv82jzQ5 | + | 9W13osDpdkZkULD3lKxp/ |
- | 5gzx1I// | + | oWsUYeIw8nWnxXljk8jNgSJ0XOnB4Po85xtWLk3MpAViy+s/RwwVEyam0CokgVw8 |
- | JAzbP4R3a18TxsUSu51lCiJtB7wXLI354xSJhZOw/TB33ch/GihONt4IPEqA3M2N | + | dcUjL3ZZquPGUzhDCD/s/4Hb3HCGABKhd0rpWEsTL8DOaRahwBoGU7s9g07zQZal |
- | wGgfOLmy5VOiCViwIUi5Ofz/ | + | J7XHj8bGfbwmvBJoFO9jUFt+o2M7g+G00GsqPhQ7eIIKzFcuqMlR41ajWYUUHmD9 |
- | 65+kCblcKGsQdTs5X1uMJVuJARSydrxT1PLToRo/UwyxthBAQk8= | + | Jq6fwrZZ+zgyKnjZ75E94uQqd7e54DF8wcpYoV/W1FEBSVBJgco= |
- | =uncO | + | =5M8V |
-----END PGP SIGNATURE----- | -----END PGP SIGNATURE----- | ||
</ | </ |