Hacker News new | ask | show | jobs
by zxspectrum1982 1749 days ago
Yes, PGP is dead but not because of any of the reasons this article points out.

It's dead for a very simple reason: it's really hard to find active PGP/GPG keyservers.

Fedora keyserver? Dead

Debian keyserver? Dead

openSUSE keyserver? Dead

SKS keyserver pool? Dead

keys.gnupg.net? Dead

keys.openpgp.org? Half-dead (HKPS access not working, it seems only web is working) etc

Very few keyservers are still online and some of then don't sync with the others (e. g. keyserver.pgp.com).
2 comments
Valodim 1749 days ago
> keys.openpgp.org? Half-dead (HKPS access not working, it seems only web is working) etc

Can you be more specific? HKPS looks fine from here, and we've had no downtimes on our monitoring.

link
zxspectrum1982 1749 days ago
[zxspectrum@zxspectrum ~]$ gpg --refresh-keys

gpg: refreshing 204 keys from hkps://keys.openpgp.org

gpg: keyserver refresh failed: No keyserver available

link
Valodim 1748 days ago
This is likely an issue with GnuPG, respectively its dirmngr component. This can typically be fixed via `killall dirmngr`. See also https://dev.gnupg.org/T4513

For a simple check, those two commands perform exactly the same http request: > curl https://keys.openpgp.org/pks/lookup?op=get&options=mr&search... > gpg --keyserver hkps://keys.openpgp.org --recv-keys F357AA1A5B1FA42CFD9FE52A9FF2194CC09A61E8

link
grobbie 1749 days ago
https://keyserver.ubuntu.com/

Still going strong.

link