Hello, You sent the wrong canary. text(it is the text from 033) The current canary is not signed on December 04. 2022.
Cristian ------- Original Message ------- On Thursday, March 2nd, 2023 at 7:07 PM, Andrew David Wong <a...@qubes-os.org> wrote: > > > Dear Qubes Community, > > We have published a new Qubes canary. The text of this canary is reproduced > below. This canary and its accompanying cryptographic signatures will always > be available in the Qubes security pack (qubes-secpack). > > ``` > > ---===[ Qubes Canary 034 ]===--- > > > Statements > ----------- > > The Qubes security team members who have digitally signed this file [1] > state the following: > > 1. The date of issue of this canary is December 04, 2022. > > 2. There have been 87 Qubes security bulletins published so far. > > 3. The Qubes Master Signing Key fingerprint is: > > 427F 11FD 0FAA 4B08 0123 F01C DDFA 1A3E 3687 9494 > > 4. No warrants have ever been served to us with regard to the Qubes OS > Project (e.g. to hand out the private signing keys or to introduce > backdoors). > > 5. We plan to publish the next of these canary statements in the first > fourteen days of March 2023. Special note should be taken if no new > canary is published by that time or if the list of statements changes > without plausible explanation. > > > Special announcements > ---------------------- > > None. > > > Disclaimers and notes > ---------------------- > > We would like to remind you that Qubes OS has been designed under the > assumption that all relevant infrastructure is permanently compromised. > This means that we assume NO trust in any of the servers or services > which host or provide any Qubes-related data, in particular, software > updates, source code repositories, and Qubes ISO downloads. > > This canary scheme is not infallible. Although signing the declaration > makes it very difficult for a third party to produce arbitrary > declarations, it does not prevent them from using force or other means, > like blackmail or compromising the signers' laptops, to coerce us to > produce false declarations. > > The proof of freshness provided below serves to demonstrate that this > canary could not have been created prior to the date stated. It shows > that a series of canaries was not created in advance. > > This declaration is merely a best effort and is provided without any > guarantee or warranty. It is not legally binding in any way to anybody. > None of the signers should be ever held legally responsible for any of > the statements made here. > > > Proof of freshness > ------------------- > > Sun, 04 Dec 2022 03:11:56 +0000 > > Source: DER SPIEGEL - International > (https://www.spiegel.de/international/index.rss) > Friends or Frenemies?: Significant Trans-Atlantic Divides Emerge in Global > Chip War > The Russian Mobilization: One Soldier's Effort to Avoid the War > Tragedy in Mariupol: The Boy Who Lost His Family But Not His Hope > A Year with Angela Merkel: "You're Done with Power Politics" > Fears of Chinese Aggression Grow in Taiwan: "Where Are We Supposed to Go?" > > Source: NYT > World News > (https://rss.nytimes.com/services/xml/rss/nyt/World.xml) > > He Returned a Dazed Soldier to the Russians. Ukraine Calls It Treason. > Landslide Tragedy Turns Italy’s Focus to Illegal Construction > Why Is Rahul Gandhi Walking 2,000 Miles Across India? > How China’s Police Used Phones and Faces to Track Protesters > Ukraine Calls for Evacuations From a Russian-Controlled Area > > Source: BBC News - World (https://feeds.bbci.co.uk/news/world/rss.xml) > Cyril Ramaphosa: South Africa leader won't resign, says spokesman > Ukraine war: Zelensky calls West's Russian oil cap 'weak' > Ukraine war: New images show Russian army base built in occupied Mariupol > Elnaz Rekabi: Family home of Iranian climber demolished > Columbia peace talks with leftist ELN rebels make progress > > Source: Blockchain.info > 00000000000000000000955f2976b1fbff0d0c47c262ea3ae6410e43f8218fb7 > > > Footnotes > ---------- > > [1] This file should be signed in two ways: (1) via detached PGP > signatures by each of the signers, distributed together with this canary > in the qubes-secpack.git repo, and (2) via digital signatures on the > corresponding qubes-secpack.git repo tags. [2] > > [2] Don't just trust the contents of this file blindly! Verify the > digital signatures! Instructions for doing so are documented here: > https://www.qubes-os.org/security/pack/ > > -- > The Qubes Security Team > https://www.qubes-os.org/security/ > ``` > > > This announcement is also available on the Qubes website: > https://www.qubes-os.org/news/2023/03/02/canary-034/ > > -- > You received this message because you are subscribed to the Google Groups > "qubes-users" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to qubes-users+unsubscr...@googlegroups.com. > To view this discussion on the web visit > https://groups.google.com/d/msgid/qubes-users/f1aa2663-c33d-f11f-93b9-178184387481%40qubes-os.org. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/_bXholAtTa4Rufp3aoBzl6ov4Bt4UWEK42YkBDIGbuhc7v3_txVgM9Byl0XzaS5Ie_PcFlT1YVH_tqqNWVKpbVNO98PkYZaKOLxClh-A63M%3D%40cristiioan.me.
publickey - cristiioan@cristiioan.me - 0xDAC92D89.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature