Show newer

I just released version 0.0.12 of crates.io/crates/openpgp-card- (plus a new version of the underlying crates.io/crates/openpgp-card- library).

With this release, decrypt and sign operations don't need the public key material as a parameter anymore (the public key material on the card is used).

Idea I just got at out #MCH2022 session about social media:

Instance moderation as a service.

Ideally, a moderator should to be able to support themselves financially. But it's difficult for a single instance to pay a moderator enough.

So, crazy idea, maybe it would make sense to have moderators who work with and are supported by multiple instances?

This is not a well-formed idea. Just spitballing here.

My team at @telecomparis is hiring a tenured associate professor of #SoftwareEngineering for Safe and Secure Systems.

Keywords: #cybersecurity, #opensource, mining sw. repositories, empirical sw.eng., #supplychain.

Details: institutminestelecom.recruitee

Deadline: 25 September 2022.

computer trouble 

When I was young and carefree and content, I had a little industrial PC to act as my home Internet router/firewall/etc, and all was good. Ah, those happy days of yesterday.

Today, the box barely even boots into BIOS. Sometimes not even that.

Starting with #Rust 1.62.0, tests for gettext-rs crate segfault on x86_64-unknown-linux-musl because pthread_mutex_lock is missing from the binary. I failed to figure out why: github.com/Koka/gettext-rs/iss If you're into this sort of thing, please lend me a hand!

#Rustlang

Creating a Web-of-Trust Implementation: Certify Keys with PGPainless

Currently I am working on a Web-of-Trust implementation for the OpenPGP library PGPainless. Technically, the WoT consists of a graph where the nodes are OpenPGP keys (certificates) with User-IDs and the edges are signatures. In order to be able to create a WoT, users need to be able to sign other users certificates to create those edges.

https://blog.jabberhead.tk/2022/07/19/creating-a-web-of-trust-implementation-certify-keys-with-pgpainless/

#certification #decentralization #encryption #openpgp #pgpainless #signature #signing #web-of-trust

Just watched the "Sequoia-PGP, v5 OpenPGP, Authentication, and Debian" talk by Justus from sequoia-pgp.

Lots of interesting news and stories about ongoing work in the #openpgp ecosystem in there!

meetings-archive.debian.net/pu

#debconf

Microsoft has (rightfully) reversed it's proposed policy of banning for-profit FOSS sales on its app store. Thanks to everyone who helped them to make the right decision and support developers making FOSS more available on Windows.

sfconservancy.org/news/2022/ju

I made some pancakes. They weren't very good: in fact, they were a little crepes.

Some more improvements to the #OpenPGP part of the #Bouncycastle crypto library were merged recently!

Among the changes for the next release are support for Argon2 S2Ks, support for parsing keys of unknown versions/algorithms (forwards compatibility), some performance improvements as well as fixes for compliance to the standard :)

Free Software is fun!

github.com/bcgit/bc-java/pulls

Come work with me/us!

boards.greenhouse.io/wikimedia

We're hiring a Senior Product Manager to join the Fundraising Technology team (my team).

We build the tech that allows the Wikimedia Foundation to raise funds globally all while respecting our donors privacy.

All of the software we write and maintain is Free/Open Source and self-hosted.

The role is 100% remote friendly in the UTC-7 to UTC+2 timezones (there would be late meetings in UTC+2).

#getfedihired #fossjobs #wikipedia #remote

If you mostly let AI decide what to read and who to interact with, I am sorry to tell you this, but you might be an NPC.

Reminder: when someone complains about "woke", they're complaining that other people are human beings who have rights. That's all they're talking about. They want to be the only people who are really human and get rights.

Would any free and open source software developers here be interested in a free "basics of Rust" online training course? Something like a four hour session on a Saturday or Sunday, or two sessions of two hours, one on Saturday and one the next day.

I do paid training on this, and this would be a way for me to help the FOSS development community, and also get practice, and a bit of advertising.

Respond if you'd join. Boosts welcome.

Show older
toot.liw.fi

Lars and friends