Having an expired public key on keybase is a bummer. I don't use the keybase client and do not intend to upload my private key since it has been used for years for secure messaging, software signing, and other purposes. ![]() This seems like a pretty serious server-side issue. A user is already using two factors to update: their login and the private key for message signing. I think it makes sense to disable expiry checking for the API which specifically updates the public key on keybase. Trying to validate data submitted to the API with an expired key throws an error server side even if the API request is to attempt to update said key. The problem seems to stem from on keybase side using an expired key to attempt to verify a user-submitted API request. Here's my keybase (with expired keys as of this writing) My hypothesis Lurfs-MacBook-Pro:~ leijurv$ gpg -export-secret-key 30AE187C | keybase pgp import -push-secretĭescription: no valid primary key self-signature or key(s) have expired (Signature failure in packet 1: rejecting insecure hash SHA1 (8d8bf0e242d8a068572ebf3ce8f732347257e65f)) You need a passphrase to unlock the secret key for ▶ ERROR ImportKey (secret: true) error: openpgp: invalid data: entity without any identities ▶ ERROR openpgp: invalid data: entity without any identitiesġ 4096R 0936202430AE187C Lurf Jurv, Lurf Jurv ~ leijurv$ gpg -export-secret-key 30AE187C | keybase pgp import -push-secret You can still verify messages, of course." ![]() "nkirsch, you're not hosting your private key in Keybase's encrypted key store, so you can't use the in-browser signing script. The company, called Keybase, is open source and audited by (paid) third parties, but users and two-factor authentication advocates often ding the company for not offering 2FA. However, I am still unable to encrypt via the website: ▶ ERROR No PGP keys available to choose from. Nick % keybase pgp select -no-import -multi Specify the `-multi` flag to override this check ▶ ERROR You already have a PGP key registered (718F BC82 373B DA79 1D56 009A E9DF 8027 AB63 49A2) Nick % gpg -export-secret-key AB6349A2 | keybase pgp import
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |