You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

49 lines
3.1 KiB

<!DOCTYPE html>
<title>Alex's crypto keys</title>
<p>This page hosts up-to-date information on my crypto keys.</p>
<p>I use PGP-signed emails. All my keys expire 2 years after creation, though I may publish the revocation certificate before the expiration date. I recommend checking periodically with the Ubuntu keyserver ( and the key's page at the PGP archive in case I revoked the key.</p>
<p>See also the <a href="pgp-archive/index.html">PGP key archive</a></p>
<th>Expiration date</th>
<td><a href="pgp-archive/11ADE4393600C1BDFFCBC0A598DE15942B08CA00/">11ADE4393600C1BDFFCBC0A598DE15942B08CA00</a></td>
<p>The latest key is also available via <a href="">Web Key directory</a>.</p>
<p>I use SSH keys at git. This key is only used at git. I'm not much of a fan of OpenPGP, I actually prefer the simpler SSH keys. You can also go to <a href="">YellowComet.keys at Codeberg</a> and <a href="">redbluegreenhat.keys at GitHub</a> to check my latest key.</p>
<th>Public key</th>
<th>Still used</th>
<td>ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINbnd8D+WQJVrNep2/UWRwErwbQxyGhQgKRvvnD7qWkX</td>
<h2>How to know that a new OpenPGP/SSH key is from me</h2>
<p>This site is hosted on a <a href="">Git repository at Codeberg</a>. As I sign all my commits there, using the SSH key indicated above, you can use that signature as a way to know that a new key is from me. Look for the "Signed by: YellowComet" line at the commit on the web interface, or clone the repository, put my SSH key in your <a href="">allowed_signers</a> file, and use the Git CLI to verify the signature on your machine.</p>
<p>This is straightforward enough for OpenPGP keys. In the case of SSH keys, I'll first generate it, make a commit including the new public key at this website's Git repository using the old key, and only then sign new commits using my new key.</p>
<p>Of course, to be 100% sure it is me (as this scheme falls apart if my private SSH key is compromised), you should verify these keys with me in person.</p>
<p>Copyright 2023 Alex <<a href=""></a>>. This website is hosted at Codeberg: <a href="">YellowComet/pages</a>.</p>
<p>This webpage is licensed under the Creative Commons Attribution-ShareAlike 4.0 International license, see <a href="">here</a> for the license, and Creative Commons for a <a href="">summary</a> of the license.</p>