Good Afternoon folks: Well, on Nostr, this might be a slightly redundant message ...

Anthony Accioly

npub1a6w…0tyc

2025-02-20 15:02:27

Good Afternoon folks: Well, on Nostr, this might be a slightly redundant message (events are signed and there are plenty of web of trust relays around) but please don’t let others impersonate you as easily as "Linus Torvalds" over here: https://github.com/jayphelps/git-blame-someone-else/commit/e5cfe4bb2190a2ae406d5f0b8f49c32ac0f01cd7. Especially in situations where this is entirely preventable.

Just… sign your stuff! Don’t put your users at risk. Don’t let laziness, advocacy for other tools or conspiracy theories dissuade you from doing it.

Yes, Nostr has its own emerging alternatives. Also, software like AGE (for encrypting files) and Sigstore (for software supply chain security) are also shaping up nicely. But in many contexts, not only is PGP not dead, it’s still the most widely available and arguably the best option around.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Good afternoon, folks! Just a quick reminder: PGP isn't dead. Sign with pride!

Signed with my GPG key: 1BBD C23D 1853 255D 6415 D2EC 814E DF85 1AAB 370E

#OpenPGP #GPG #Cybersecurity #Tech #DigitalIdentity #SignYourCode
-----BEGIN PGP SIGNATURE-----

iHUEARYIAB0WIQTHaQ+iFRwfaXx+TxhjUbpCCVDiNAUCZ7cd5gAKCRBjUbpCCVDi
NOZSAPoDPFoZXKuxya98iY6nAV6hzgOghpqF/OtOVSW4qtEdMQEA3x/jqaD4R9vo
qi89wA4Hsd4KeqwTSQxKDECesI+W8QU=
=3gty
-----END PGP SIGNATURE-----

-
@anthony@accioly.social 🔗 https://accioly.social/users/anthony/statuses/114036190256089233

Author Public Key

npub1a6we08n7zsv2na689whc9hykpq4q6sj3kaauk9c2dm8vj0adlajq7w0tyc

Seen on

wss://nostr.mom

Show more details

Published at

2025-02-20 15:02:27

Kind type

1 Short Text Note

Event JSON

{ "id": "f524fa8e90164ca8d8cf5524c97cd770d1c4d271433396f547434a24c7a9a3d0", "pubkey": "ee9d979e7e1418a9f7472baf82dc96082a0d4251b77bcb170a6ecec93fadff64", "created_at": 1740063747, "kind": 1, "tags": [ [ "t", "OpenPGP" ], [ "t", "openpgp" ], [ "t", "GPG" ], [ "t", "gpg" ], [ "t", "Cybersecurity" ], [ "t", "cybersecurity" ], [ "t", "Tech" ], [ "t", "tech" ], [ "t", "DigitalIdentity" ], [ "t", "digitalidentity" ], [ "t", "SignYourCode" ], [ "t", "signyourcode" ], [ "r", "https://github.com/jayphelps/git-blame-someone-else/commit/e5cfe4bb2190a2ae406d5f0b8f49c32ac0f01cd7." ], [ "r", "anthony@accioly.social" ], [ "r", "https://accioly.social/users/anthony/statuses/114036190256089233" ] ], "content": "Good Afternoon folks: Well, on Nostr, this might be a slightly redundant message (events are signed and there are plenty of web of trust relays around) but please don’t let others impersonate you as easily as \"Linus Torvalds\" over here: https://github.com/jayphelps/git-blame-someone-else/commit/e5cfe4bb2190a2ae406d5f0b8f49c32ac0f01cd7. Especially in situations where this is entirely preventable.\n\nJust… sign your stuff! Don’t put your users at risk. Don’t let laziness, advocacy for other tools or conspiracy theories dissuade you from doing it.\n\nYes, Nostr has its own emerging alternatives. Also, software like AGE (for encrypting files) and Sigstore (for software supply chain security) are also shaping up nicely. But in many contexts, not only is PGP not dead, it’s still the most widely available and arguably the best option around.\n\n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\nGood afternoon, folks! Just a quick reminder: PGP isn't dead. Sign with pride!\n\nSigned with my GPG key: 1BBD C23D 1853 255D 6415 D2EC 814E DF85 1AAB 370E\n\n#OpenPGP #GPG #Cybersecurity #Tech #DigitalIdentity #SignYourCode\n-----BEGIN PGP SIGNATURE-----\n\niHUEARYIAB0WIQTHaQ+iFRwfaXx+TxhjUbpCCVDiNAUCZ7cd5gAKCRBjUbpCCVDi\nNOZSAPoDPFoZXKuxya98iY6nAV6hzgOghpqF/OtOVSW4qtEdMQEA3x/jqaD4R9vo\nqi89wA4Hsd4KeqwTSQxKDECesI+W8QU=\n=3gty\n-----END PGP SIGNATURE-----\n\n-\n@anthony@accioly.social 🔗 https://accioly.social/users/anthony/statuses/114036190256089233\n", "sig": "8e17eb00b2969d7ff4ba156ff575e0a9f19da2da6327aad330f5861a7444b2123fcb5878a6f580061ea9b16f673ac9475f4c1a757b79654cb8c21e37140c6e03" }