dark.fail canary is incorrectly signed.

EDIT: This issue has been resolved and a new canary has been published that is correctly signed by the most recent PGP key.

Current PGP key for dark.fail is:

7D6D036C2ED1E8ECA3133B5D65C82325B01972C5

This key has expired as of 2021-09-04 but on mastadon dark.fail mentions how they want extend the expiration date until around Januray. No reason is mentioned and it is a very odd statement as generating a new key is a extremely easy process. This statement they published on mastadon is also not signed with their current key.

It appears that the key has been signed with a previously revoked key.

6DFDAE66D43FC1EECEB87E7CE2E469DC7D8C3DA2

The current canary can be found at:

http://darkfailenbsdla5mal2mxn2uz66od5vtzd5qozslagrfzachha3f3id.onion/canary.txt

The history of PGP key revocation can be found at:

http://darkfailenbsdla5mal2mxn2uz66od5vtzd5qozslagrfzachha3f3id.onion/pgp-sigs.txt

This is not the first time this has occurred as can be seen in my old post here:

https://reddit.com/r/onions/comments/noa3ow/darkfail_canary_has_expired/

View Reddit by Pure-Cricket7485View Source

guest
0 Comments
Inline Feedbacks
View all comments

Recent Posts