mircea_popescu: meanwhile the kidis trying, even has a gpg sig

mircea_popescu: well technically you could extract some sort of email from gpg keys, but i never bothered to.

mircea_popescu: http://trilema.com/2012/gpg-contracts/ << you meant that ?

mircea_popescu: you mean the gpg contracts trilema article ?

mircea_popescu: jurov: afaik gpg never saves unencrypted keys to disk << indeed. it's not made by the power rangers, not using qt, etc.

mircea_popescu: i don't get it, gpg already recognises destinations by name, email, keyd out of the box

mircea_popescu: ;;google nick szabo gpg fingerprint

mircea_popescu: has everything it needs to have, gpg key, email, etc.

mircea_popescu: how sucky tech gpg has huh.

mircea_popescu: jurov: automatically << fie upon that word. think of it, gpg keypairs are not generated "automatically"

mircea_popescu: derp security model : why use gpg keys ? use emails instead!

mircea_popescu: just gpg the package and send it over. i definitely like fabian's cjdns much more

mircea_popescu: it doesn't make the gpg guarantee that old conversations can never be read by third parties.

mircea_popescu: well, if i give you a list of gpg messages encrypted to a bunch of my friend's keys

mircea_popescu: you familiar with gpg right ?

mircea_popescu: some sort of "gpg encrypted to ip"

mircea_popescu: the problem itself tho, "make me gpg which keeps my key safge and uses no pw", is not trivial.

mircea_popescu: asciilifeform there's possibly more rng customers than gpg customers imo

mircea_popescu: yes. you'd need gpg for internet banking.

mircea_popescu: ThickAsThieves use his gpg email

mircea_popescu: gpg keeps the content of the conversation secret.

mircea_popescu: ;;gpg everify freenode:#bitcoin-otc:2e6195d15b2c01a8966238fa3e5f01154ac275f02c4121bd6632669e

mircea_popescu: ;;gpg eauth mircea_popescu

mircea_popescu: ;;gpg eauth

mircea_popescu: ;;gpg ident

mircea_popescu: anyway, your particular question may be different, but it's also misplaced. the philosophy of gpg contracts, which is what bitcoin is based on, is that the parties to any transaction can dispute, but third parties have no say. ☟︎

mircea_popescu: someone working for wired actually has a gpg pubkey on their blog.

mircea_popescu: Apocalyptic to a gpg fingerprint yes, but it doesn't have to be a key.

mircea_popescu: mp grins at BingoBoingo's link, knowing full well he was the original investor that insisted dooglus use a gpg scheme to certify investment movements.

mircea_popescu: twizt write all your pws down, encrypt the file to your gpg key.

mircea_popescu: and gpg is innovation now ? i'm sorry, back to the egg nogg i go.

mircea_popescu: gpg has been around for 20 years, pgp for 30, this guy just discovered "bitcoin signatures"

mircea_popescu: so if you see a lot of "plz to change gpg it is hard to use" you can guess it's them.

mircea_popescu: having a variable part kinda defeats the immutable niceness of gpg

mircea_popescu: ie, ask YOUR customer to gpg sign THEIR bc acct.

mircea_popescu: strangely enough, they all also knew one of python/perl/bash, had gpg sigs and are now rich.

mircea_popescu: it's a company trying to make various gizmos. currently working on a gpg secure usb stick

mircea_popescu: hahaha nothing is beyond our reach, except pls don't use gpg.

mircea_popescu: pottery, stone tablets, gpg signed matter...

mircea_popescu: suppose i show up one day to find my gpg key was helpfully changed.

mircea_popescu: if you're interested in the point in a philosophical sense you may also wish to read http://trilema.com/2012/gpg-contracts/ and the trackbacks etc

mircea_popescu: a good solution is to gpg it and publish it for instance.

mircea_popescu: thestringpuller sure. at the worst copy the gpg blurb by hand to another machine

mircea_popescu: no gpg, no love.

mircea_popescu: some people invest 950 btc in coinlenders and afterwards compliment me on how "prophetic" my gpg contract was.

mircea_popescu: BingoBoingo anyway, my point is this : whether you know or not, pgp/gpg do not use your key to encrypt the message.

mircea_popescu: do you understand how pgp/gpg works ?

mircea_popescu: someone made a gpg excel extension or something ?

mircea_popescu: more importantly, if you also put gpg on the system you can then go gpg --encrypt --armor -r yourkey and put the result in an email to yourself

mircea_popescu: BingoBoingo didn't you just publish a gpg how to thing ?

mircea_popescu: dexX7 it's vague what exactly it means. most people sign keys so gpg stops whining about it.

mircea_popescu: generally gpg enabled translation and transduction is where it's at.

mircea_popescu: gpg keys mostly contain addies

mircea_popescu: i dunno, i wouldn't take the judge job w/o gpg sigs.

mircea_popescu: im curious how long before judges move to gpg sigs

mircea_popescu: KRS-1 ". The timing implicit in gpg signatures is documentedly unreliable - to the degree the mainainer insists it shouldn’t be used." http://trilema.com/2013/snsa-first-product-the-cardano/#comment-95494

mircea_popescu: if your email wasn't gpg'd its read long ago.

mircea_popescu: so you steal a diskload of gpg files. what now ?

mircea_popescu: suppose i didn't touch gpg in the current session.

mircea_popescu: ok, let's make it simple : do you agree that in order for your system to be safe it has to be powered down, whereas for gpg to be safe it doesn't have to be powered down ?

mircea_popescu: nanotube if i get your "full disk encrupted" pc i can full disk decrypt it. if i get your gpg'd stuff, good luck to me.

mircea_popescu: nubbins` here's the thing : if you do it with addresses you don't really need the blockchain, might as well do it to gpg signatures.

mircea_popescu: gpg could take over the world.

mircea_popescu: i would think you know, if anyone that groks gpg gives one to their numerous gfs

mircea_popescu: not exactly and not just. think about it : gpg requires that i have your public key to send you stuff

mircea_popescu: i'd absolutely love to see someone improve on gpg.

mircea_popescu: except they don't strive to improve over gpg.

mircea_popescu: mpex has been using the *superior* gpg signature method for two years now.

mircea_popescu: i was discussing gpg/pgp/ssh keys/whatever else uses diffie-hellman

mircea_popescu: ppl wish to donate their time for the strengthening of mpex and spreading of the gpg goodword, all the better.

mircea_popescu: ThickAsThieves: he edited most details out of the contract a while ago << http://trilema.com/2012/gpg-contracts/ i say!

mircea_popescu: pankkake so tell him to gpg or stfu.

mircea_popescu: for instance, if i were to sign blocks with my gpg signature the suspicioun would be misplaced, as it's not bloody likely i've shared my private key with some random miner to win a bet.

mircea_popescu: of course this problem wouldn't exist in the first place if people actually used gpg properly.

mircea_popescu: you can email your wallet to yourself in gpg encrypted form for backup, and just hang on tight to the laptop.

mircea_popescu: but yeah, the best security is having a cheap laptop you don't use for anything else. generate a wallet and some gpg keys.

mircea_popescu: no but the gpg part at least is the righ way

mircea_popescu: chsados__ same principle as gpg sigs from what i understand

mircea_popescu: use gpg and gmail. what exactly is anyone going to do ?

mircea_popescu: i think teh gpg is really counterintuitive or something

mircea_popescu: you mean like gpg-contracts discussion ?

mircea_popescu: thestringpuller there's a reason gpg signatures are good.

mircea_popescu: so he gets real excited over having discovered how to make arbitrary length gpg keys and wants to market this to halp ppl.

mircea_popescu: also, http://trilema.com/2012/gpg-contracts/

mircea_popescu: i imagine as we develop better controls for the entire set of problems of the gpg contract we'll be able to bring the hare voting franchise back.