journal/static/resource/old-dkim-privates, branch archive/signify-signature-10

journal/static/resource/old-dkim-privates, branch archive/signify-signature-10 My journal. https://git.nicholasjohnson.ch/journal/atom?h=archive%2Fsignify-signature-10 2024-03-18T00:00:00Z Publish key parameters for DKIM key 'dkim4' 2024-03-18T00:00:00Z Nicholas Johnson nick@nicholasjohnson.ch 2024-03-18T00:00:00Z urn:sha256:53e3ce5f8c833da7e46005aa46eee18b781b6ab9a8308f4718d092b1c77a0411 Publish key parameters for DKIM key 'dkim3' 2024-01-04T00:00:00Z Nicholas Johnson nick@nicholasjohnson.ch 2024-01-04T00:00:00Z urn:sha256:98e6dbb7e8a22e0737d9628c834b0eac592de14d5202e08367472b471a2b8060 Publish revoked DKIM keys in PKCS #8 PEM format 2023-12-16T00:00:00Z Nicholas Johnson nick@nicholasjohnson.ch 2023-12-16T00:00:00Z urn:sha256:c9b0f09917f09261ffc624eeb036b124cfb4fb5727804ac399f31491dedc5796 Publishing revoked keys this way is simpler, requires less effort, is less error-prone, doesn't require software to reconstruct the original key, and may improve deniability. I will no longer publish revoked DKIM keys in DNS because it seems to break the DNS record and it's redundant.