1450 entries in 0.633s
mircea_popescu: Adlai you can't be in the wot 2 years ago w/o the
gpg auth
mircea_popescu: brianhoffman no, it's not. looky here, let's model it. there are 3 items of interest. 1. the shipping of purchased items ; 2. the discussion of trade, ie, merchant and buyer meeting hteir minds ; 3. the payment for purchases. now, these 3 can be sorted in any which way. otc for instance sorts it that 2 is
gpg over email or an irc channel, 1 is mail and 3 is the wot.
mircea_popescu: brianhoffman let me restate it. since shipping precludes practical anonimity, it makes sense to bundle the trust required to maintain pseudonymous identities with the trust required to police transactions, resulting in the following cutting of your mayo : centralized trade with decentralized comm network. which reduces your idea to reimplementing
gpg over email.
mircea_popescu: yeah, what bounce said. or in a pastebin, you can
gpg it to my key.
mircea_popescu: giving it a
gpg sig is a handwave anyway, whoever controls it can make it sign anything anyway. not like it's a creature in itself.
mircea_popescu: Michael Goldstein presentats a tutorial on
GPG contracts and the #bitcoin-otc web of trust. < that ?
mircea_popescu: asciilifeform i like plaintext, it's why i -a all my
gpg mircea_popescu: exactly the same thing. pgp is the standard.
gpg is the gnu implementation thereof.
mircea_popescu: as long as you use
gpg, you're an individual, and can be interacted with as such. as long as you use anything else, including nothing at all, you're not, and whatever you may like to think or claim, can never actually be interacted with as an individual, except if you live in a 1900s reenaction camp where the intenret doesn't exist.
mircea_popescu: julia_ look, they're both gimmicks.
gpg is the actual core of bitcoin.
mircea_popescu: the problem of course is the converse situation : products like the btc, wot or
gpg, without which life ACTUALLY IS not worth living
mircea_popescu: in principle, if your credit / wot ratings are good, you should be able to use the proof of holding the bet you made as collateral with a
gpg contract
mircea_popescu: dignork: openbazaar published alpha tests of their platform. Looks interesting on paper. Shows seller
gpg private key in raw contract, on the buyer side. Facepalm^2 <<< such great things come out of "the community".
mircea_popescu: MolokoDesk i dunno how you get
gpg for php for instance.
mircea_popescu: simply do this : separate the pastebin into individual signed bits, put each through
gpg, take the apparent, unverified signer id, put it through grible to verify wot id, put it through gribble again to verify assbot linkage and you're done.
mircea_popescu: ben_vulpes
gpg saying "signed by x" means nothing if you don't have x's pubkey to check.
mircea_popescu: when you feed a string to
gpg you either get a "nonsense" complaint or a "signed by X" response, with a warning that "we can't know who x is "
mircea_popescu: it does not verify the signatures. it merely extracts w/e signature
gpg sees in the document.
mircea_popescu: ;;
gpg info --key 6160E1CAC8A3C52966FD76998A736F0E2FB7B452
mircea_popescu: ben_vulpes hey, how about offering teh interested people a nice drawing of their
gpg wot ? they gotta put the address in anyway, you got the dependencies anyway...
mircea_popescu: you know, the schneier of "this is an interesting article on
gpg by Random Asshat Greene, Cryptozoologist"
mircea_popescu: ben_vulpes VAN doesn't recognize that keyid. Please try again with the shortform of your
GPG/PGP keyid. << now wouldn't it be saner if you just took the last 8 ?
mircea_popescu: BingoBoingo: Basically ever since 2004 when I bought a computer I've been waiting for an opportunity to use
GPG and... Bitcoin afforded that. << a happy fate.
mircea_popescu: i can't tell these people apart. unless she starts writing her
gpg fingerprint on her boobs nobody can tell her from eve.
mircea_popescu: asciilifeform re
gpg clunk (not to be confused with pgp issues) : "MolokoDeck : for some reason
gpg returns the useful info about the status of a signature verify via the error channel."
mircea_popescu: by now i can sorta distinguish the noobs from the veterans because the noobs send me
gpg blobs with "Content-Type: multipart/mixed;" mixed in, whereas the veterans just neatly paste the pgp in the email body.
☟︎ mircea_popescu: BigBitz i didn't mean the power ranger derpage. i just meant, one having multiple
gpg signatures.
mircea_popescu: ;;later tell RagnarDanneskjol had you reg'd with a
gpg address like respectable folk i would now have everything I need to send you an email. wtf am i going to do with a bitcoin address ?
mircea_popescu: jborkl this suggests a ready expansion to Jason's bot. it could hold propositions for voting, like a
gpg-poll thing.
mircea_popescu: take the coinfire dood. he thinks he's too old to be arsed to learn
gpg ? he thinks he's too mature to submit ?
mircea_popescu: "WoT is a gimmick just like
GPG. 99.9% of bitcoin businesses don't take it seriously." o the win in that. lmao.
mircea_popescu: asciilifeform
gpg has built in key signing for this reason.
mircea_popescu: asciilifeform traffic should resemble people exchanging
gpg messages maybe ?
mircea_popescu: suppose that anyone can generate txn using
gpg, much like mpex works.
mircea_popescu: asciilifeform that's a bad idea. baking in
gpg however would be splendid.
mircea_popescu: DreadKnight well then just get the pgp blob at the url, then run
gpg and paste it in
mircea_popescu: DreadKnight anyway, get your
gpg registered in the wot as a first step. we'll work something out.
mircea_popescu: CheapBoy i have no problem with your assigning your delivery, but to do that you will need to register a
gpg signature in the wot.
mircea_popescu: <BingoBoingo> What was Hearn's nick? << i don't recall he ever managing to figure out the
gpg arcana. i imagine he'll first have to implement a google code version, that doesn't work.
mircea_popescu: the better news here is that while i tried to sleep my cold off people actually got to the bottom of the whole
gpg snag. hallelujah.
mircea_popescu: anyway, the
gpg blob from the engineer in charge was so long this morning i thought at first he's gonna kill himself and is sending me his life story.
mircea_popescu: moiety i loved the picky, but irl people aren't all that well equipped to drop
gpg in.
mircea_popescu: ;;later tell moiety gotta splice a guide on how to make a
gpg key into the (excellent btw) first steps to b-a guide.
mircea_popescu: <jurov> if i scale down the craziness, maybe tongue implant would actually work.. to pay or
gpg sign something, one has to lick the electrodes << im not fucking licking anything
mircea_popescu: "we of course can not offer any documentation to this claim, nor have we learned to
gpg yet, because this is all very common of big ticker 2012 miners"
mircea_popescu: <chetty> having a
gpg key and a wot rating is elite? who knew << damn straight.,
mircea_popescu: i guess since the dork in question can't
gpg sign, i could make a pastebin too. let's have some fun
mircea_popescu: cause otherwise this discussion is exactlylike email privacy. i have all the email privacy i could want, because
gpg mircea_popescu: asciilifeform i dunno how someone could seriously propose they're a chief justice and not
gpg sign
mircea_popescu: to auto-voice you need to a) identify with gribble. you don't need
gpg for this, tho
gpg works. you can also identify with your btc address ; b) be in assbot's l2 trust.
mircea_popescu: mircea@inigo-montoya:/media/ce570767-bda1-4312-b09f-99a812e19f3e$
gpg 95bad940ebdc9bfcda86ea087d376ca179c59ebe
mircea_popescu: proper solution would be to make a
gpg key for the forum and sign everything