pgp

New GPG Keys!

I am transitioning both my professional and personal GPG keys. This transition document (in full, below) and both updated keys are signed with both old and new keys for both personal and professional accounts to validate the transition.

In short:
[email protected] - new keyID 270C17F1
[email protected] - new keyID FDDB8C25

If this is all greek to you, GPG (or PGP) is a way to encrypt your email so that only other specific people (who must also be using GPG) are able to read it. While we think of email like regular mail, with a level of privacy like something in an envelope, the reality is that it's better to compare it to a postcard. If you're interested in getting started, I highly recommend EFF's excellent PGP guide, and Mailvelope is a super-easy browser plugin to help get you started in more secure webmail (it works great, for example, with gmail).

5 Headlines about buzzfeed you never expected to read!

So, via @runasand, I learn that Buzzfeed's writers have PGP keys:

I hear all @BuzzFeed journalists have the ability to send encrypted emails. Wonder when we'll see this in other newsrooms.— Runa A. Sandvik (@runasand) September 15, 2015

I cannot express in mere words how much this makes me happy in the world of normalizing real people having the ability to send actually secure email (especially to journalists!). PGP's various implementations get a lot of heat for their lack of usability, and the process itself, even with a theoretically super-easy interface, is still a complex set of ideas to understand and use in your normal communications. So every organization I see that is willing to tackle this head-on, and (hopefully!) have internal champions, mentors, support, training, and drinking games (I presume) to really encourage adoption is a huge win, be that a 3 person organization or a 100-person organization.

Still, I can't help myself:

"All of Buzzfeed's PGP Keys -- you won't believe the last one!" (Sorry, I cannot help myself) https://pgp.mit.edu/pks/lookup?search=%40buzzfeed.com&op=index

"Buzzfeed journalists can send encrypted emails -- but why they send them will blow your mind!"

"Top 10 passwords buzzfeed journalists use for PGP -- #8 will drive you crazy!"

"3 pieces of metadata not protected by encrypted emails you'd never guess!"

"5 attachments you never thought you'd be able to send encrypted to buzzfeed!"

Tags

SSL!

Thanks to the great, community-focused CACert , plus DreamHost supporting SSL on virtualhosts (which is a boring technical detail, but oh so exciting), I now have SSL working for https://JonCamfield.com - Most of the site should be 100% SSL, with a few included images here and there still being on non-ssl sites.

Let me take this opportunity to re-post my PGP key ID of 2824 391e b10d 0440 for my personal account, and a998 959f f926 bf8b for my professional email.

For OTR-enabled chat, my fingerprint is FE0E870C 40A3B334 5E6E84F0 D013369F 3C064E4C (for most of my devices now, thanks to KeySync!)

Still reading? Maybe you should install EFF's excellent HTTPS Everywhere addon, or read more about HTTPS

Tags