Mailing List Archive

Hello Jay,

Il 05 agosto 2022 alle 17:28 Jay Sulzberger via Gnupg-users ha scritto:
> Does the PGP public key at https://www.washingtonpost.com/anonymous-news-tips/
> work?

It gets copied in a weird way (i.e. some characters that should be
newlines are instead spaces); I am not able to import it.

I cannot say whether that is just on my browser of choice or other
browsers too
—F

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users

The key on that page is line wrapped.
If I replace the right spaces with newlines, then it seems to work import okay.

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: Mailvelope v4.6.0
Comment: https://www.mailvelope.com
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=53IM
-----END PGP PUBLIC KEY BLOCK-----

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users

Francesco Ariis <fa-ml@ariis.it> wrote:
> Hello Jay,

> Il 05 agosto 2022 alle 17:28 Jay Sulzberger via Gnupg-users ha scritto:
>> Does the PGP public key at
>> https://www.washingtonpost.com/anonymous-news-tips/ work?

> It gets copied in a weird way (i.e. some characters that should be
> newlines are instead spaces); I am not able to import it.

Yeah, the marketing department screwed it up, and should have put <pre> on it.
It suggests that it has never really been used.



_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users

Il 05 agosto 2022 alle 18:13 Michael Richardson ha scritto:
> Francesco Ariis <fa-ml@ariis.it> wrote:
> > Il 05 agosto 2022 alle 17:28 Jay Sulzberger via Gnupg-users ha scritto:
> >> Does the PGP public key at
> >> https://www.washingtonpost.com/anonymous-news-tips/ work?
>
> > It gets copied in a weird way (i.e. some characters that should be
> > newlines are instead spaces); I am not able to import it.
>
> Yeah, the marketing department screwed it up, and should have put <pre> on it.
> It suggests that it has never really been used.

That was what I was thinking. It would be interesting to see how long
the key has been there in such a state.

If the answer is “a long time”, that is quite a field report: it means
signal and whatsapp (!) are more popular options (way more popular
options) than PGP + email for secure communications.

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users

Some years ago after they first published their OpenPGP certificate, Enigmail reached out to them offering training on effective use of OpenPGP and technical support for GnuPG and Enigmail. No cost, Enigmail had a core member who lived near their offices (namely, me), let us know how we can support you.
The Washington Post never responded to repeated emails, not even to say "no thank you".
Draw your own conclusions.
On Aug 5, 2022 6:49 PM, Francesco Ariis <fa-ml@ariis.it> wrote:

Il 05 agosto 2022 alle 18:13 Michael Richardson ha scritto:
> Francesco Ariis <fa-ml@ariis.it> wrote:
> > Il 05 agosto 2022 alle 17:28 Jay Sulzberger via Gnupg-users ha scritto:
> >> Does the PGP public key at
> >> https://www.washingtonpost.com/anonymous-news-tips/ work?
>
> > It gets copied in a weird way (i.e. some characters that should be
> > newlines are instead spaces); I am not able to import it.
>
> Yeah, the marketing department screwed it up, and should have put <pre> on it.
> It suggests that it has never really been used.

That was what I was thinking. It would be interesting to see how long
the key has been there in such a state.

If the answer is &#8220;a long time&#8221;, that is quite a field report: it means
signal and whatsapp (!) are more popular options (way more popular
options) than PGP + email for secure communications.

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users

On Fri, 5 Aug 2022, Michael Richardson <mcr@sandelman.ca> wrote:

> The key on that page is line wrapped.
> If I replace the right spaces with newlines, then it seems to work import okay.

Michael, thank you very much! Yes, I was able to import your working version:

Welcome to the Emacs shell

~ $ gpg --list-keys
/net/u/10/j/jays/.gnupg/pubring.gpg
-----------------------------------

< ... blocks suppressed ... />

pub rsa4096 2016-10-17 [SC] [expires: 2022-10-02]
44B661213CE666D65403B4CC44A3475AE1AAA9EB
uid [ unknown] Tips for The New York Times <tips@nytimes.com>
sub rsa4096 2016-10-17 [E] [expires: 2022-10-02]

pub rsa4096 2017-01-25 [SCA] [expired: 2022-01-24]
88D9812ED0747AEAEA1EC219DC816CC4FE3D535C
uid [ expired] Lockbox <lockbox@washpost.com>

pub rsa3072 2022-08-04 [SC] [expires: 2024-08-04]
EC6C2905F0F93C0373946CA10642427A5FF780BE
uid [ unknown] TWP Lockbox <lockbox@washpost.com>
sub rsa3072 2022-08-04 [E] [expires: 2024-08-04]

~ $

I think the Washington Post has not placed their recent key on the PGP
public keyservers. Below is quoted from a different machine:

Welcome to the Emacs shell

~ $ gpg --recv-keys 'EC6C2905F0F93C0373946CA10642427A5FF780BE'
gpg: keyserver receive failed: No data
~ $

oo--JS.



--------- below from Michael Richardson's response ----------


>
> -----Begin PGP PUBLIC KEY BLOCK-----
> Version: Mailvelope v4.6.0
> Comment: https://www.mailvelope.com
>
> xsDNBGLr60kBDAC7/dyy27fxfbaE1Ss13QI9li93YePYFNjLW1JonvNcsmN+
> ncuA5u8HZJQFo9ICtytfMIzEwW6JwcTVFY5TvZcjDi/8FtNzpCCFmnzkCZP1
> TVXo5xGLV7HC3rzpJSP8n3vcHO7xCPbBsBdzVrzA6QQZCDTniCITBYHdFZYb
> 7qT9NGD34mPb+gmhzBNxZf8YfJ3jj7H+Bq3dz2laDl/lHg7+TnfvOGwHJuA4
> uMMPxWTXhZFZv2toYpuYPgj+pfwG0m4fTQEEjc8BK2xpCl3o0sgg+IhHKtpy
> J2GF43ee8iBBFMIcZNSKxGo7676QYM8bp9TuBB6qGiNeML08EIB5OLYYFnII
> AWxHyx5DbSdSYFGEAnaJnH3KWrvPI5/YvlVsa8uiYK3gcyLIJI3VW3PBHvU7
> lsH/o0rI6fprTERuaBfkd5xgJlvFFG+VLBOZnTnQ4ap7wXVY5Omje4BACBqW
> zKuyVtuCyKdP3j3fYaMymdrwomFIAbhlq5LcZATSTdApSSsAEQEAAc0iVFdQ
> IExvY2tib3ggPGxvY2tib3hAd2FzaHBvc3QuY29tPsLBKwQTAQgAPhYhBOxs
> KQXw+TwDc5RsoQZCQnpf94C+BQJi6+tJAhsDBQkDw7o3BQsJCAcCBhUKCQgL
> AgQWAgMBAh4BAheAACEJEAZCQnpf94C+FiEE7GwpBfD5PANzlGyhBkJCel/3
> gL5TgQv+P3OalnPOiYz2sTLVninPd8s9guhBKvoR1b2k0oA4iS2g/sONY109
> CC4SWlUJVxqaVLFhDi3x5g/tgWOzv51pKGuKZuzlmS456Z0ofIvwbJuHHc9B
> ypTA7GNqFEp7ylTL3H1BTeYXcWqzTIqAwYrvkDzbfjiRd4nDgfoJffHiHDEw
> Oun/UFaUK6TpBS5HSzSrthxQxRQ2Gq05pIvA9QWmaN7U1et9eZoy2q76bv6T
> Ij2yAse/VN6BE4txcbPmFBF9ZLWhDs+gtzpMWeaLqK11tiyGvWZ1j64ncVs3
> K7O/NYfnaaYijuKIpF+fvzriiS8yoe8FX3AFOSWYe6hk13GFgceF7AbhiAlD
> yRSJSsVQyY4yrtuTisSP8m5bQi71VvX1Mw7n9eEwc5XeZ77ndbVOFDBz3Oes
> OXd7e/RcGBLzfuiIdKJVuMW8T78X34ide60w2/6rik41tebQMaCgcK4dEOu1
> JIG4fChEZh09usLcnLxn6PGUqDcAZlrlBWonb2H5zsDNBGLr60kBDACnlsLK
> mY1Hu15iEWcfU0ieArFf4saw/gTBYcne2uKQRFflmq7i6W7l3aiEqCaezkUZ
> F3sokng6h1PqE7DW+9uzOWr9rpfiF2+PakFaTLUCbcIYdh/mxItXeAjadAkV
> tcGVJK0Eb5OtvS0pK39dFIsnhm63t7/G/aFiCiAWRmmvMzsXeKdH+GVXF4Nb
> KH+q6d9hPuxIBP92wYOeo/630jJTXlqJ0muqM2BYyodb9RqXKYOZcgkTm0Xu
> XUoHseIPhlrReWzoZtsa16zL1aCgoz5BeqGwrBoE9EatsexexpAJP7Jt7VzZ
> OJyF4tGXQRkmfkWCwOxnTQWAave1xvdwk3VYB6cHNkN4WaF4TD4Wx+xBadMA
> OnKV2vOZbNNPMHYsUsLKNy1Lv15FK5nAYN+o26u0AiFFo3lMNBwl9QqLTeRh
> gvwxMelO9UdrV+bxziGlFMDkyrd62b6qw4evTLI6QzT9f9/51vNfmTpW1E44
> IChMQB64hrDJ7TWstSV+4JDje+EAEQEAAcLBEwQYAQgAJhYhBOxsKQXw+TwD
> c5RsoQZCQnpf94C+BQJi6+tJAhsMBQkDw7o3ACEJEAZCQnpf94C+FiEE7Gwp
> BfD5PANzlGyhBkJCel/3gL7uXwwAhxceVQGfug5U7ZmKlzBjgCcF4VhlTaFt
> iGMKP1WJO7jPXkX9qReYWARKpcW2u16crg8fndAeKHgu0t1KRnCJaTnxWUHM
> qX+zuOX6l4GSdxIvrkv3arqVz48doxNW2ph1u7dV46j3MFTqujjZnkl77rUf
> aoCnb20YU0dR+1LAPLqf4U9fdndWd0DjwoK6pulALFZfHix1PqDGa05gRcBP
> NaCPiGhjl3Uv8xlykJuNhnGWVLUb8qDfAnHnbhFqnX9KaucjI/RrXiI42cPA
> QpL31cVRKNq60qZMQYY/5aYHoXao4+n2Y7D2rEi1XmTmMlpMgW3Sw51eUXKi
> mRGas2kFtslkDmRsHo+DYLWUZxzBCfKanuf1VLCNftb10zb0jgWjRAVNEOjQ
> KmrvwxI0qNJGv85oalHXE+P99ao85hByEJbA5YlfQr7Kv65ULG7pOsMdNXWQ
> U3UuJ/9XuI2Oc2S0TIA4T43Ur2HX1lRkaRMjTSBXRQSppFctaiwe/t+oL01j
> =53IM
> -----END PGP PUBLIC KEY BLOCK-----
>
>

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users

On Fri, 5 Aug 2022, Francesco Ariis <fa-ml@ariis.it> wrote:

> Hello Jay,

Hi, Francesco!

> Il 05 agosto 2022 alle 17:28 Jay Sulzberger via Gnupg-users ha scritto:
> > Does the PGP public key at https://www.washingtonpost.com/anonymous-news-tips/
> > work?
>
> It gets copied in a weird way (i.e. some characters that should be
> newlines are instead spaces); I am not able to import it.
>
> I cannot say whether that is just on my browser of choice or other
> browsers too
> —F

Thanks, Francesco! I tried fetching the key by its fingerprint but
gpg did not succeed in finding a key. (The fingerprint offered at the
Washington Post page seems to be correct.) I then grabbed the offered
key, that is, as text. I also was not able to import the key. But,
Michael Richardson's restored key I was able to import.

Thanks gnupg-users!

oo--JS.

_______________________________________________
Gnupg-users mailing list Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users

On 06/08/2022 13:49, Jay Sulzberger via Gnupg-users wrote:
> I think the Washington Post has not placed their recent key on the PGP
> public keyservers.  Below is quoted from a different machine:
>
>   Welcome to the Emacs shell
>
>   ~ $ gpg --recv-keys 'EC6C2905F0F93C0373946CA10642427A5FF780BE'
>   gpg: keyserver receive failed: No data
>   ~ $

As this key's availability is in the public interest, and does not
contain any personal information, I have taken the liberty of submitting
it to the SKS network.

A

On 06/08/2022 13:49, Jay Sulzberger via Gnupg-users wrote:
> I think the Washington Post has not placed their recent key on the PGP
> public keyservers.  Below is quoted from a different machine:
>
>   Welcome to the Emacs shell
>
>   ~ $ gpg --recv-keys 'EC6C2905F0F93C0373946CA10642427A5FF780BE'
>   gpg: keyserver receive failed: No data
>   ~ $

As this key's availability is in the public interest, and does not
contain any personal information, I have taken the liberty of submitting
it to the SKS network.

A

On Sat, 6 Aug 2022, Andrew Gallagher <andrewg@andrewg.com> via Gnupg-users wrote:

> On 06/08/2022 13:49, Jay Sulzberger via Gnupg-users wrote:
>> I think the Washington Post has not placed their recent key on the PGP
>> public keyservers.  Below is quoted from a different machine:
>>
>>   Welcome to the Emacs shell
>>
>>   ~ $ gpg --recv-keys 'EC6C2905F0F93C0373946CA10642427A5FF780BE'
>>   gpg: keyserver receive failed: No data
>>   ~ $
>
> As this key's availability is in the public interest, and does not contain
> any personal information, I have taken the liberty of submitting it to the
> SKS network.
>
> A

Dear Andrew, thank you! I myself did not send the key to the
keyservers because I do not know much about the keyservers system.

Heaven forwarding, I will learn more.

I believe that, with some work, things might improve.

Thank you all for your kind help!

oo--JS.

Michael Richardson <mcr@sandelman.ca> wrote:
> Yeah, the marketing department screwed it up, and should have put <pre>
> on it. It suggests that it has never really been used.

I sent an encrypted email to the newspaper, pointing them at this thread, and
the problems they have.

On Sat, 6 Aug 2022, Andrew Gallagher via Gnupg-users, Andrew Gallagher <andrewg@andrewg.com>, wrote:

> On 06/08/2022 13:49, Jay Sulzberger via Gnupg-users wrote:
>> I think the Washington Post has not placed their recent key on the PGP
>> public keyservers.  Below is quoted from a different machine:
>>
>>   Welcome to the Emacs shell
>>
>>   ~ $ gpg --recv-keys 'EC6C2905F0F93C0373946CA10642427A5FF780BE'
>>   gpg: keyserver receive failed: No data
>>   ~ $
>
> As this key's availability is in the public interest, and does not contain
> any personal information, I have taken the liberty of submitting it to the
> SKS network.
>
> A

Andrew, do the sks keyservers work today?

I was able to find the key by going to

https://keyserver.ubuntu.com/

and putting

EC6C2905F0F93C0373946CA10642427A5FF780BE

into the search box.

oo--JS.

> On 7 Aug 2022, at 17:28, Jay Sulzberger via Gnupg-users <gnupg-users@gnupg.org> wrote:
>
> Andrew, do the sks keyservers work today?
>
> I was able to find the key by going to
>
> https://keyserver.ubuntu.com/
>
> and putting
>
> EC6C2905F0F93C0373946CA10642427A5FF780BE
>
> into the search box.

Do you mean SKS the software (i.e. github.com/sks-keyserver) or SKS the protocol/network? The answer in both cases is “yes”, but for different values of “yes”. ????

What doesn’t work any more is the sks-keyservers.net pool, which had become a nightmare to manage. This has been taken by many to mean that the SKS network itself is down, but this is absolutely not the case.

sks-keyserver still works, but is IMO not suitable for use in production unless you are an expert willing to roll your own load balancing pool and recompile the code to update blacklists (there are still a few such brave souls left). This may change in the future — the software is maintained but hasn’t had a significant feature bump in some time.

The SKS network also still works, and depending on your choice of metric is probably more stable today than it has ever been. The reasons are twofold: many operators have migrated from sks-keyserver to hockeypuck, and most of the rest have shut down. This means that although there are fewer keyservers now than five years ago, the ones that do exist (including keyserver.ubuntu.com) are generally much more reliable.

Information about the SKS network can be found at https://spider.pgpkeys.eu

A
_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users

On Sun, 7 Aug 2022, Andrew Gallagher <andrewg@andrewg.com> wrote:

>
>> On 7 Aug 2022, at 17:28, Jay Sulzberger via Gnupg-users <gnupg-users@gnupg.org> wrote:
>>
>> Andrew, do the sks keyservers work today?
>>
>> I was able to find the key by going to
>>
>> https://keyserver.ubuntu.com/
>>
>> and putting
>>
>> EC6C2905F0F93C0373946CA10642427A5FF780BE
>>
>> into the search box.
>
> Do you mean SKS the software (i.e. github.com/sks-keyserver) or SKS
> the protocol/network? The answer in both cases is “yes”, but for
> different values of “yes”. ????

In the past two days, I have come to understand how little I know
about the design, the practical use, and the statistics of usage, of
gnupg. I think that learning some more is worth the effort.

>
> What doesn’t work any more is the sks-keyservers.net pool, which had
> become a nightmare to manage. This has been taken by many to mean
> that the SKS network itself is down, but this is absolutely not the
> case.

Ah.

>
> sks-keyserver still works, but is IMO not suitable for use in
> production unless you are an expert willing to roll your own load
> balancing pool and recompile the code to update blacklists (there
> are still a few such brave souls left). This may change in the
> future — the software is maintained but hasn’t had a significant
> feature bump in some time.

Ah, oi.

>
> The SKS network also still works, and depending on your choice of
> metric is probably more stable today than it has ever been. The
> reasons are twofold: many operators have migrated from sks-keyserver
> to hockeypuck, and most of the rest have shut down. This means that
> although there are fewer keyservers now than five years ago, the
> ones that do exist (including keyserver.ubuntu.com) are generally
> much more reliable.

Ah, OK.

>
> Information about the SKS network can be found at https://spider.pgpkeys.eu
>
> A

Andrew, thank you much for this useful short introduction to these
obscure things!

oo--JS.

WaPo also does have SecureDrop, but I'm not sure how often that gets
used either.

On Tue, Aug 9, 2022 at 10:34?PM Jay Sulzberger via Gnupg-users
<gnupg-users@gnupg.org> wrote:
>
>
> On Sun, 7 Aug 2022, Andrew Gallagher <andrewg@andrewg.com> wrote:
>
> >
> >> On 7 Aug 2022, at 17:28, Jay Sulzberger via Gnupg-users <gnupg-users@gnupg.org> wrote:
> >>
> >> Andrew, do the sks keyservers work today?
> >>
> >> I was able to find the key by going to
> >>
> >> https://keyserver.ubuntu.com/
> >>
> >> and putting
> >>
> >> EC6C2905F0F93C0373946CA10642427A5FF780BE
> >>
> >> into the search box.
> >
> > Do you mean SKS the software (i.e. github.com/sks-keyserver) or SKS
> > the protocol/network? The answer in both cases is “yes”, but for
> > different values of “yes”. ????
>
> In the past two days, I have come to understand how little I know
> about the design, the practical use, and the statistics of usage, of
> gnupg. I think that learning some more is worth the effort.
>
> >
> > What doesn’t work any more is the sks-keyservers.net pool, which had
> > become a nightmare to manage. This has been taken by many to mean
> > that the SKS network itself is down, but this is absolutely not the
> > case.
>
> Ah.
>
> >
> > sks-keyserver still works, but is IMO not suitable for use in
> > production unless you are an expert willing to roll your own load
> > balancing pool and recompile the code to update blacklists (there
> > are still a few such brave souls left). This may change in the
> > future — the software is maintained but hasn’t had a significant
> > feature bump in some time.
>
> Ah, oi.
>
> >
> > The SKS network also still works, and depending on your choice of
> > metric is probably more stable today than it has ever been. The
> > reasons are twofold: many operators have migrated from sks-keyserver
> > to hockeypuck, and most of the rest have shut down. This means that
> > although there are fewer keyservers now than five years ago, the
> > ones that do exist (including keyserver.ubuntu.com) are generally
> > much more reliable.
>
> Ah, OK.
>
> >
> > Information about the SKS network can be found at https://spider.pgpkeys.eu
> >
> > A
>
> Andrew, thank you much for this useful short introduction to these
> obscure things!
>
> oo--JS.
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users@gnupg.org
> https://lists.gnupg.org/mailman/listinfo/gnupg-users

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
https://lists.gnupg.org/mailman/listinfo/gnupg-users