Abaduni basebenzise inqaku le-OpenPGP protocol eyaziwayo ngaphezulu kweminyaka elishumi.
Siyakuxelela ukuba yintoni inqaku kwaye kutheni bengenakuyivala.
/unsplash/
Iingxaki zenethiwekhi
Phakathi kuJuni, ayaziwa
Abaduni baye babeka esichengeni iziqinisekiso zabagcini beprojekthi yeGnuPG ababini, uRobert Hansen noDaniel Gillmor. Ukulayisha isatifikethi esonakeleyo kwiseva kubangela ukuba i-GnuPG ingaphumeleli-inkqubo ivele ingumkhenkce. Kukho isizathu sokukholelwa ukuba abahlaseli abayi kumisa apho, kwaye inani lezatifikethi ezithotyiweyo liya kwanda kuphela. Okwangoku, ubungakanani bengxaki ayikaziwa.
Undoqo wohlaselo
Abahlaseli bathathe ithuba lokuba sesichengeni kwiprotocol ye-OpenPGP. Sele amashumi eminyaka esaziwa eluntwini. Nokuba kwiGitHub
Iinketho ezimbalwa kwibhlog yethu kuHabré:
Ngokokucaciswa kwe-OpenPGP, nabani na unokongeza utyikityo lwedijithali kwizatifikethi zokuqinisekisa umnini wazo. Ngaphezu koko, inani eliphezulu lokutyikitya alilawulwa nangayiphi na indlela. Kwaye nantsi ingxaki ivela - inethiwekhi ye-SKS ikuvumela ukuba ubeke ukuya kuthi ga kwi-150 lamawaka esayinwe kwisatifikethi esinye, kodwa i-GnuPG ayilixhasi inani elinjalo. Ke, xa ulayisha isatifikethi, iGnuPG (kunye nolunye uphunyezo lwe-OpenPGP) iyaba ngumkhenkce.
Omnye wabasebenzisi
$ gpg --homedir=$PWD --recv C4BC2DDB38CCE96485EBE9C2F20691179038E5C6
gpg: key F20691179038E5C6: 4 duplicate signatures removed
gpg: key F20691179038E5C6: 54614 signatures not checked due to missing keys
gpg: key F20691179038E5C6: 4 signatures reordered
gpg: key F20691179038E5C6: public key "Daniel Kahn Gillmor <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg: imported: 1
$ ls -lh pubring.gpg
-rw-r--r-- 1 filippo staff 17M 2 Jul 16:30 pubring.gpg
Ukwenza izinto zibe mbi ngakumbi, iiseva ezingundoqo ze-OpenPGP azilususi ulwazi lwesatifikethi. Oku kwenziwa ukuze ukwazi ukulandelela ikhonkco lazo zonke izenzo kunye nezatifikethi kwaye uthintele ukutshintshwa kwazo. Ngoko ke, akunakwenzeka ukuphelisa izinto eziphazamisekileyo.
Ngokusisiseko, inethiwekhi ye-SKS yi "server yefayile" enkulu apho nabani na anokubhala idatha. Ukubonisa ingxaki, kunyaka ophelileyo umhlali weGitHub
Kutheni ububuthathaka bungavalwanga?
Kwakungekho sizathu sokuvala ubuthathaka. Ngaphambili, yayingasetyenziselwa ukuhlaselwa kwe-hacker. Nangona uluntu lwe-IT
Ukuze sibe nobulungisa, kuyafaneleka ukuba siqaphele ukuba ngoJuni basahlala
/unsplash/
Ngokubhekiselele kwi-bug kwisixokelelwano soqobo, indlela enzima yongqamaniso iyayithintela ekubeni ingalungiswa. Inethiwekhi yeseva engundoqo yabhalwa kuqala njengobungqina bengcamango yethisisi ye-PhD kaYaron Minsky. Ngaphezu koko, ulwimi oluthile, i-OCaml, yakhethwa kulo msebenzi. Ngu
Kuyo nayiphi na imeko, i-GnuPG ayikholelwa ukuba inethiwekhi iyakuze ilungiswe. Kwiposti kwi-GitHub, abaphuhlisi bade babhala ukuba abacebisi ukusebenzisana ne-SKS Keyserver. Ngokwenyani, esi sesinye sezizathu ezingundoqo zokuba kutheni baqalise inguqulelo entsha yenkonzo yezitshixo.openpgp.org. Sinokubukela kuphela uphuhliso oluqhubekayo lweziganeko.
Izinto ezimbalwa ezivela kwibhlog yethu yeshishini:
umthombo: www.habr.com