wait, what does this mean exactly? the stickman used their pgp private key to sign a text file that contains the girls public key? is this a taboo in the pgp world for some reason?
The joke here is that he has no idea who this girl is and yet he still signed her key. This is dangerous, because he is vouching for her identity. If he is mistaken, this could result in a serious loss of credibility on his part.
https://www.explainxkcd.com/wiki/index.php/364:_Responsible_Behavior
ExplainXKCD…because I’m not smart.
Signing the key was certifying that anyone who knows him should trust her - https://en.wikipedia.org/wiki/Web_of_trust
I’m not cool enough to get invited to those sorts of parties.
Let’s host a Matrix one, but everyone has to come wearing a sick black coat and thin dark sunglasses
I’m in
Green is my pepper… If you know what I mean… 😏
…I don’t actually know what you mean, if you know what I mean.
Ahh, the good old useless green pepper of GIMP.
Oh no. Can we please stop pushing (Open)PGP / GPG?
Why?
Because expertie-experts dislike it while not providing any alternative? No.
Here are some alternatives, depending on your use-case: https://soatok.blog/2024/11/15/what-to-use-instead-of-pgp/
No idea how I’m supposed to take this ranty blog needlessly interspersed with furry cartoons seriously. But it’s basically just restating (poorly) all the same criticisms and alternatives written about here: https://www.latacora.com/blog/2019/07/16/the-pgp-problem/
The ‘real’ criticisms of PGP are that it’s old, it’s clunky, and it doesn’t support forward secrecy by design. None of that is invalid, but I think the importance of those points depends on the use case and user.
The alternatives given are myriad and complexity and clunkiness are interspersed between dozens of solutions instead of well understood and documented in one tool.
That isn’t a superior approach. I’m not arguing that PGP is perfect, but it’s absolutely asinine to suggest (like this blog and others suggest) that the solution is to use dozens of other solutions with their own problems and with less auditing.
If we’re going to replace PGP, we need to do it properly in a centralized library/toolchain. Breaking up the solution and spreading it around just magnifies the problems.
A furry recommending shit? Nah I’ll do the opposite.
I always wonder how do people get that green pepper image. Is it in gimp or smth.
It’s gimp
