gchristensen changed the topic of #nixos-security to: Vulnerability Roundup Issues: https://github.com/NixOS/nixpkgs/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+Vulnerability+roundup + https://broken.sh
ajs124 has quit [Quit: killed]
ajs124 has joined #nixos-security
justanotheruser has quit [Ping timeout: 240 seconds]
justanotheruser has joined #nixos-security
anselmolsm has quit [Quit: Konversation terminated!]
FRidh has joined #nixos-security
ckauhaus has joined #nixos-security
rajivr has quit [Quit: Connection closed for inactivity]
kleisli has quit [Ping timeout: 240 seconds]
ckauhaus has quit [Quit: WeeChat 2.7.1]
IdleBot_53cfaeb2 has quit [*.net *.split]
IdleBot_53cfaeb2 has joined #nixos-security
JJJollyjim has quit [Ping timeout: 246 seconds]
Yakulu[m]1 has quit [Ping timeout: 246 seconds]
bbigras has quit [Ping timeout: 246 seconds]
colemickens has quit [Ping timeout: 246 seconds]
thefloweringash has quit [Ping timeout: 240 seconds]
tokudan[m] has quit [Ping timeout: 256 seconds]
FRidh has quit [Quit: Konversation terminated!]
justanotheruser has quit [Ping timeout: 260 seconds]
MichaelRaskin has joined #nixos-security
colemickens has joined #nixos-security
justanotheruser has joined #nixos-security
tokudan[m] has joined #nixos-security
thefloweringash has joined #nixos-security
JJJollyjim has joined #nixos-security
bbigras has joined #nixos-security
Yakulu[m] has joined #nixos-security
aanderse has joined #nixos-security
ajs124 has quit [Quit: killed]
ajs124 has joined #nixos-security
JJJollyjim is now known as Guest42512
justanotheruser is now known as Guest88307
Guest88307 has quit [Quit: WeeChat 2.7.1]
justanotheruser has joined #nixos-security
ajs124 has quit [Quit: killed]
ajs124 has joined #nixos-security
anselmolsm has joined #nixos-security
sgo_ has joined #nixos-security
stigo has quit [Ping timeout: 256 seconds]
sgo_ is now known as stigo
<hexa-> gchristensen: can you push your gpg key on to https://keys.gnupg.net please? The pgp.mit.edu is using the legacy sks system and it's unresponsive :<
<hexa-> I'm talking about the link over here https://nixos.org/teams/security.html
<hexa-> fplet.z' key is already up there
<hexa-> so we could update those links
<hexa-> yikes, not keys.gnupg.net
<hexa-> aaand you're already up there as it seems
<hexa-> adding a pr for nixos-homepage asap
<Valodim> hexa-: good catch ;)
<Valodim> while you're at it, drop the key ids from the page and link the fingerprints instead?
<hexa-> yep, will do
<Valodim> also make sure to link to the keys by fingerprint, not key id as they are now
<hexa-> yep, already the case
<Valodim> 👍️
<andi-> +1 for linking to the fingerprints, I would keep the key id's tho...
<andi-> just as a lookup/verification angle
<Valodim> for what purpose?
<andi-> IIRC most guides work on key id's and use fingerprings just for verifcation. I wouldn't want to make it harder for someone that is unfamiliar with GPG
kleisli has joined #nixos-security
<andi-> I am not saying they are neede but that it is probably not hurting but helping people
<Valodim> did you consider the argument at the link above that they are harmful?
<andi-> Not yet. Let me read
<Valodim> what about them?
<hexa-> signatures are moot when using hagrid
<Valodim> yea. good riddance
<andi-> Valodim: mhm, I wasn't aware of the long-id attacksurface. Let's drop them then.
<Valodim> I have a PR to drop them from the maintainers list on my todo list for a while now
<Valodim> perhaps this weekend :)
tokudan[m] has left #nixos-security ["Kicked by @appservice-irc:matrix.org : Idle for 30+ days"]
rajivr has joined #nixos-security
justanotheruser has quit [Ping timeout: 260 seconds]
justanotheruser has joined #nixos-security