240 entries in 0.383s
: pretty sure noone gives a shit about keybase
anyway, so not much to verify.
: that'd be... not your key your twitter advertises on... keybase
: in other convergences, one of the 'keybase
' faces nominally also 'built' the 'okcupid' thing mike_c now runs
: shill for keybase
, red-, black-, and possibly other 'coloured' -phones, and several other varieties of usgolade which escape my memory
: 'Bram Cohen, famously invented BitTorrent' 'proofs of space and time' [many squigglies] 'decentralized, and more secure' 'Install and setup Keybase
: " Our goal: smack-dab in the middle of a public Reddit or HackerNews or Twitter conversation, you should be able to say "Hey, I threw those gifs/libraries/whatever in our encrypted keybase
folder" without ever asking for more identifying info. If that person hasn't installed Keybase
yet, your human work is still done. They can join and access the data within seconds, and your device will quietly handle the verification and re
: WHAT ARE YOU DOING ABOUT THE PHORKS, KEYBASE
: erlehmann: pretty sure debian nao 100% keybase
: i am glad such stuff exists, because association with it shows stupid. if i remember correctly, debian response to keybase
fuckery was: we consider stuff showing up on keybase
compromised, any keys showing up will be shot on sight.
: asciilifeform crypto cranks need no proofs. take https://keybase.io/triplesec/
– money quote: “We don't have any exact proof of security for a cascade of block ciphers in CTR mode. But we're pretty sure”
: to be honest, back when the fucktards were like "o hi guise, i am 12 and expert, never heard of wot but i made this keybase
", i was all pissy because of the whole "i have never heard". now that they do the "oh i know tmsr is my true and proper sovereign, but might i not talk my way out of it ? i'm really clever like, plus i use words i can't define borrowed from an old copy of wikimedica" i'm pissy because of the whole clever
: 'Crypto-Nerd who is allergic to bad crypto.' and uses keybase
: mircea_popescu: No only PHP, but also C/C++, Java, web stuff, ASM (mostly x86/x64), Haskell, shell scripting, ... Also, as we are at WoTs: https://keybase.io/benbe
: asciilifeform linked a dump at some point, check the logs. the principal parts are a sks+trims (keybase
, whatnot) dump that might be still available, though 2 years back in logs, and Framedragger 's ssh scan results, which he might share with you.
: why didja link to this, ben_vulpes ? looks like another 'keybase
: i think the solution is to give up. switch to windows 10, connect through web irc client, put gpg key into keybase
, the works
allows signing of zcash scam addys)
: (but for clarity, keybase
works perfectly well without being supplied with privkey, no?) ("i'm just sayin'" - not defending keybase
: or atleast I have yet to encounter a keybase
user in the wild who has done so...
: asciilifeform: I don't think keybase
allows you to generate keys anymore...you have to supply them...
: thestringpuller: keybase
etc were going strong year+ ago, snore.
: so yes, for the people to whom "their" twitter's page is important, then "their" keybase
key makes sense. and for the same money, for the people who breathe underwater, land respiratorial equipment is a must get. and for the people who are healed by collodial silver/prayer/psychic surgery etc, collodial silver/prayer/psychic surgery etc are useful.
: look, obviously there are people for whom sociul media accountz are really important. some of them want to pretend they can use crypto, so they use keybase
to help them "link" their accounts. while this is inane, this does not, in itself, pose a security risk, if done properly (with external program which handles your privkey.)
: anyway. i'm not using keybase
. i'm just sayin'.
: Framedragger: why would a user who is able to 'paste signatures from external program' need a thing like keybase
: i've stayed away from keybase
as it had that creepy (and useless) hipsta vibe, but if true, then it's actively malicious.
: (i don't think keybase
gets to see your privkey tho.)
: I'm not entirely unsure this won't be the case in future, since last time I checked she had started using keybase
: 'secret tor market', keybase
keys / plaintext, 'assassin service', all of the leprosies in one convenient leprosorium .
: alice_: if you generated it on keybase
, they have your private.
: -----BEGIN PGP PUBLIC KEY BLOCK----- Version: Keybase
OpenPGP v2.0.55 Comment: https://keybase.io/crypto
xsFNBFevnesBEAC90aLfcq+wrWVKGcQWUd+NmB/0kK7OONd0Tg2OUgfHE2RtZSzG mqgsiAmyPsz+R6B3VwkMd3pBiuAZ8IN/jf0px+iikmo0vvWemsnVTUM0mtyoFecy /qyj1+mwjLrzR7UMDP8789JBwxecY+1fS6k4BQio3gGvmqzGr76sAjTZlIbkPs80 Nr502+QhvfOSjnjFTfQkXrzjrssjJp+jEH0OdkC/UT7H0lCWy957UPklwXlEPnu/ KQbcDoV2HWSEG0hW3Ig7+4qC03Bp0W9Z9lRTYZVIbTnDLJ+z4/J1fMu1EnmZkEKQ aH0SCtgI
: Maybe he should just switch to keybase
: (the keybase
set was posted here and i shoveled it in directly)
: asciilifeform how about we add a credits page, move bernstein there, also add phf for keybase
spidering, jurov for github spidering, others as may be ? also theory prolly should be rewritten
: asciilifeform anyway, seems you were right, keybase
moduli aren't particularly rotten
: asciilifeform so keybase
set more or less done w/o incident ?
: d280f38e56eb4b1a4f6477e18b110d8df3ae9a1545b49a05047f1deff2de94f6f011e2d005c8e1107c2ad11bbd5e589085c50e1305e1b5da832705dd29b515d0 keybase
: a lot of keybase
keys are "Keybase
OpenPGP v2.0.47", "Keybase
Go 1.0.11 (darwin)" and even some "Keybase
OpenPGP JS 0.0.1"
: cat keybase
.io | while read derp; do curl "https://keybase.io/$derp
" | grep ' class="username "' | sed 's/" class/\n/' | grep "a href" | sed 's% <a href="/%%' | sort -u > keybase2.io ; done
: i has a working keybase
: and in other weird news, keybase
somehow has > 50k users. wtf.
: asciilifeform o you know what ? wanna spider keybase
: "Every file you write in there is signed. There's no manual signing process, no taring or gzipping, no detached sigs. Instead, everything in this folder appears as plaintext files on everyone's computers. You can even open /keybase
/public/yourname in your Finder or Explorer and drag things in."
: "Public, signed directories for everyone in the world You can now write data in a very special place: /keybase
: "Alpha releases of the Keybase
app are starting to come with a cryptographically secure file mount. It is brand new. And very different." da fuck is this shit.
: adlai: have you seen keybase
: stop thinking about Keybase
at all, if you know me for my code on Github, and you see I've signed some message with my key, and see a message similarly signed on a Twitter account
: I understand what you're saying, Keybase
could not exist and you could still do the same process of "proofs", signing a message and positing it to Twitter saying this is me achieves the same thing
: if it were a problem, if anyone cared about keybase
: why? what would make me take that leap? because they are on the same keybase
page that somebody set up?
: the problem with keybase
is that it's smoke and mirrors. there isn't any actual link between those things, but it is pretending there is
: that I somehow know that it's not somebody else posting those twitter messages because the same public key and twitter address are listed on some keybase
: Logged on 13-10-2015 16:16:53; mircea_popescu: binaryatrocity that's not wqhat it does. what it does is, it allows keybase
.io to PRETEND like they're relevant, based on your own work.
: binaryatrocity it's not that simple. that's just a symptom. keybase
is bad because is made by the enemy, to suit the agenda of the enemy. the compromise key is just a symptom of this fundamental allignment with evil.
: Yes, yes I understand that keybase
is bad because they allow the option for users to compromise their own private keys
: but again i see your point, signing messages to my GIST or Twitter is still relevant without Keybase
: binaryatrocity that's not wqhat it does. what it does is, it allows keybase
.io to PRETEND like they're relevant, based on your own work.☟
: Storing your PUBLIC key on Keybase
to be access by whomever is the equivalent to uploading your public key to the MIT keyserver