| 15 Feb 2022 |
 Mic92 (Old) | I try to keep my system gnupg-free because of bad past experiences. I think andi- was working on that, but don't know the status | 16:04:05 |
 stigo | "happy" and "gpg" are unlikely to be in the same sentence though. | 16:04:08 |
 Zhaofeng Li | In reply to @stigo:matrix.org
Was wondering if anyone has had any luck setting up TPM2 with LUKS on NixOS? I use clevis and add the decrypt command to my boot.initrd.luks.devices.<name>.preOpenCommands | 16:30:19 |
| Zhaofeng Li | I added an option so the decryption process immediately falls back to password if the key file doesn't exist instead of waiting: https://github.com/NixOS/nixpkgs/pull/150196 | 16:31:16 |
| Zhaofeng Li | For better TPM+LUKS integration, there was https://github.com/NixOS/nixpkgs/pull/134577 but it was decided that we wanted to wait for systemd in stage-1 for cryptenroll support which is still in limbo at the moment | 16:33:00 |
| stigo | In reply to @zhaofeng:zhaofeng.li
I use clevis and add the decrypt command to my boot.initrd.luks.devices.<name>.preOpenCommands Thx for the info! Yeah, I'll be patient and wait for systemd-cryptenroll stuffs to be ready | 16:41:58 |
| stigo | Just to mention about gpg. Some of the things that work well with it are ssh and encryption/decryption (vith epa in emacs, and tomb, for instance), and has a nice tpm2 integration. Signature verification, trust models, sks, email, and all that is a different story though. Imho. | 16:54:31 |
| stigo | * Just to mention about gpg. Some of the things that work well with it are ssh and encryption/decryption (vith epa in emacs, tomb, and pass, for instance), and has a nice tpm2 integration. Signature verification, trust models, sks, email, and all that is a different story though. Imho. | 16:57:03 |
| *  colemickens contemplates the meaning of "work well" vs "works, after internalizing countless pitfalls and nearly encoding gpg quirks as muscle memory" | 20:14:56 |
| stigo | In reply to * @colemickens:matrix.org
contemplates the meaning of "work well" vs "works, after internalizing countless pitfalls and nearly encoding gpg quirks as muscle memory" Yeah, there is for sure a lot of that. s/work well/is useful/ would be more accurate. | 20:22:49 |
| colemickens | Yes sadly it can be made to do many neat things, and as I've been discovering, the non-gpg world has some odd gaps too, so woo. | 20:29:10 |
| 18 Feb 2022 |
|  Chinchilla Washington changed their display name from Chuck Winter to Chuck Winter (vi/vim). | 04:12:15 |
| Chinchilla Washington changed their display name from Chuck Winter (vi/vim) to Chuck Winter. | 04:20:42 |
| 21 Feb 2022 |
| Chinchilla Washington changed their display name from Chuck Winter to Chinchilla Wetreat. | 00:47:23 |
| 25 Feb 2022 |
|  stacktrust joined the room. | 04:04:13 |
| 28 Feb 2022 |
|  Florian | W3F changed their display name from Florian | W3F to Florian | W3F - OoO 02.03.. | 10:12:18 |
| 2 Mar 2022 |
| Florian | W3F changed their display name from Florian | W3F - OoO 02.03. to Florian | W3F. | 08:14:42 |
| 3 Mar 2022 |
| colemickens changed their display name from colemickens 🏳️🌈 to colemickens. | 07:13:32 |
| 9 Mar 2022 |
|  wamserma joined the room. | 20:32:08 |
| 11 Mar 2022 |
| wamserma changed their display name from Markus Wamser to wamserma. | 06:34:45 |
| 17 Mar 2022 |
| Florian | W3F changed their display name from Florian | W3F to Florian | W3F - OoO till 21.03.. | 17:23:53 |
| 19 Mar 2022 |
| Florian | W3F changed their display name from Florian | W3F - OoO till 21.03. to Florian | W3F. | 11:17:31 |
| 4 Apr 2022 |
| stigo set a profile picture. | 22:55:20 |
| 5 Apr 2022 |
|  armeen joined the room. | 18:42:55 |
| 11 Apr 2022 |
|  Mimir joined the room. | 01:51:47 |
| 13 Apr 2022 |
|  Linux Hackerman joined the room. | 07:56:36 |
| 20 Apr 2022 |
 hexa | https://www.openwall.com/lists/oss-security/2022/04/20/3 | 16:05:02 |
|  ahmed joined the room. | 23:32:38 |
| 21 Apr 2022 |
 @grahamc:nixos.org | wow | 13:38:42 |
| @grahamc:nixos.org |
this is not a known vulnerability
| 13:38:57 |
