Thoughts on GnuPG and automation
Kristian Fiskerstrand
kristian.fiskerstrand at sumptuouscapital.com
Fri Feb 27 13:04:10 CET 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On 02/27/2015 12:02 PM, Hans-Christoph Steiner wrote:
>
> Bjarni Runar Einarsson wrote:
>> Hello GnuPG users!
..
>
> With all the recent attention to GnuPG and Werner's work, I have
> begun to think about things differently. GnuPG has an amazing
> security track record. It has had few serious security bugs,
> nothing even close to heartbleed that I know of, and yet it is core
> to providing security to GNU/Linux distros, as well as protecting
> people like Laura Poitras and Edward Snowden. So instead of
> complaining about the difficulties, I now try to think about
> whether such difficulties might actually be related to what makes
> GnuPG so solid. I think anyone interested in providing usable
> security needs to think hard about this. Sure we can make things
> easier to use, but it is a very slippery slope towards reducing
> security.
>
Hear hear, you can't have proper security without proper operational
security surrounding it, and that require an educated population to
use it.
Security is not something that can be solved technically (alone). What
we would need are better ways to educate people, and get it into
school earlier, like the algorithm classes in kindergarden in britain
teching kids algos through games (i.e physical games)
- --
- ----------------------------
Kristian Fiskerstrand
Blog: http://blog.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Public OpenPGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
Manus manum lavat
One hand washes the other
-----BEGIN PGP SIGNATURE-----
iQEcBAEBCgAGBQJU8F0yAAoJEP7VAChXwav6UrsH+wWhafqn1fDjW3SE789jdsRm
/9M3e8ZPmueNB4CDadig3/4nFrl5WTcMrXfDMC62xXLTwftu2mSe8K8t7QX2CDRn
VgdTU07gARqnkwEcV+I82Y9SKeUaDfGRmoWUgh0+T3Z4MozXvp23BlFoqcHrKK5H
9ld/Sj5Ncd63JfUQKlEi4kakyGIShctoJ+P0gDje31pqVP65znWw+xi4F06sW0dm
FYPtogg73vtpJkQI6is9Luw7BFR+dE+pWGrxP6166igu1Mwn8I5bg05tqxjFe7dL
weIZffLCd8+iRsNnsr29xbKahsvvfyIrimKZX0nXvuflHftMC2uYARKdx+q8eUw=
=Xs+E
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list