I saw that people on the dark web would sign their posts with a PGP key to prove that their account has not been compromised. I think I understand the concept of how private and public keys work but I must be missing something because I don’t see how it proves anything....
EDIT: changed encryption / decryption to signing / veryfing. Thanks for the corrections
Not an expert, those who know more please correct me.
From what I understand, what they post is not a PGP key, but the same content published in clear text signed with their private key. That way anyone can verify it with the author’s public key to check it has been generated with the private one (that only one person should have).
what they post is not a PGP key, but the same content published in clear text encrypted with their private key.
So they are not excrypting it, but do we agree that with signatures the author uses their private key + the clear message to generate “something”?
That way anyone can decrypt it with the author’s public key to check it has been encrypted with the private one (that only one person should have).
… so then anyone can use the author’s public key to check that “something” against the clear mesage to confirm the author’s identity?
If that’s the case, then my error is that the operation to generate the signature is not an encryption. So, may I ask… what is it? A special type of hash?
Thanks again. I will edit my original comment with the corrections once I understand it correctly.
There’s still some subreddits I’d like to view as their communities haven’t swapped over yet. Like you guys, I obviously don’t want to support Reddit in any way shape or form. Surprisingly, they have not gutted RSS feeds yet. Simply add .rss at the end of the domain. Example...
The first entry is the post with the content and the next ones are the comments (all). Of course there is no nesting structure in the RSS, you need to go to reddit for that.
EDIT: There most probably be a limit in the number of elements of a feed, so if you try that with a post that already has a lot of comments, you will probably see only the last N ones. But if you add the RSS Feed of the comments of new post to your RSS Reader, it will most probably store all the elements over time, so you will have all of them there (and not only the last N ones)… unless the comments are posted too fast and/or the updating frequency of your RSS Reader is too slow.
Trying to build critical mass for small communities
cross-posted from: lemmy.world/post/2693464...
[Thread, post or comment was deleted by the author]
How does a signing a post with a pgp key prove that you are actually the person behind the post?
I saw that people on the dark web would sign their posts with a PGP key to prove that their account has not been compromised. I think I understand the concept of how private and public keys work but I must be missing something because I don’t see how it proves anything....
Time to ditch Twitter/X, what are you guys switching to? ( kbin.social )
He says X is for freedom of speech, and it is an everything app...
PSA, you can add subreddits as an RSS to view without supporting Reddit
There’s still some subreddits I’d like to view as their communities haven’t swapped over yet. Like you guys, I obviously don’t want to support Reddit in any way shape or form. Surprisingly, they have not gutted RSS feeds yet. Simply add .rss at the end of the domain. Example...