196

17237 readers

1879 users here now

Be sure to follow the rule before you head out.

Rule: You must post before you leave.

Other rules

Behavior rules:

No bigotry (transphobia, racism, etc…)
No genocide denial
No support for authoritarian behaviour (incl. Tankies)
No namecalling
Accounts from lemmygrad.ml, threads.net, or hexbear.net are held to higher standards
Other things seen as cleary bad

Posting rules:

No AI generated content (DALL-E etc…)
No advertisements
No gore / violence
Mutual aid posts require verification from the mods first

NSFW: NSFW content is permitted but it must be tagged and have content warnings. Anything that doesn't adhere to this will be removed. Content warnings should be added like: [penis], [explicit description of sex]. Non-sexualized breasts of any gender are not considered inappropriate and therefore do not need to be blurred/tagged.

If you have any questions, feel free to contact us on our matrix channel or email.

Other 196's:

founded 2 years ago

MODERATORS

[email protected]

769

encrulepted (retr0.id)

submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]

43 comments fedilink hide all child comments

retr0.id/media/bd23a2fb-c7a6-4…

alt text:

Goose chase meme. In the first frame, the goose asks "all the data is encrypted?" In the second, the goose chases a person, asking "encrypted how and with whose keys, motherfucker?"

@196

you are viewing a single comment's thread
view the rest of the comments

[–] pohart 99 points 1 year ago (3 children)

I once had to work with a government agency that insisted they generate and provide my private key.

[–] [email protected] 40 points 1 year ago

At least they told you about the wire tap?

[–] 8ace40 28 points 1 year ago (2 children)

I'm migrating millons of encrypted credit cards from one platform to another (it's all in the same company, but different teams, different infra, etc).

I'm the one responsible for decrypting each card, preparing the data in a CSV, and encrypting that CSV for transit. Other guy is responsible for decrypting it, and loading it into the importer tool. The guy's technical lead wanted me to generate the pair of keys and send him the private key, since that way I didn't have to wait for the guy and "besides, it's all in the same company, we're like a family here".

Of course I didn't generate the key pair and told them that I didn't want to ever have access to the private key, but wow. That made me lose a lot of respect for that tech lead.

[–] [email protected] 14 points 1 year ago

So you wanna be key buddies? Respectfully.

[–] [email protected] 2 points 1 year ago

I know one municipal agency that does the same...