PrincessPi/Encrypt-Share-Attribution
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
67 Commits 1 Branch 0 Tags
738a794d897cca873068c5d82471c04919f6fe6e
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
PrincessPi 738a794d89 sum silly shitty
2026-05-23 11:24:11 -06:00
archives
cleanup
2026-05-23 05:22:02 -06:00
keystore
cleanup
2026-05-23 05:56:19 -06:00
out
sum updoots
2026-05-23 07:35:58 -06:00
.gitignore
cleanup
2026-05-23 05:53:59 -06:00
create-attributable-archive.sh
sum silly shitty
2026-05-23 11:24:11 -06:00
FileMap.md
puttin dis minimum viable product out there to loaf for a bit
2026-05-23 07:09:22 -06:00
README (# Edit conflict 2026-05-23 ij95dmC #).md
sum silly shitty
2026-05-23 10:52:04 -06:00
README-instructions.txt
releas?
2026-05-23 09:32:02 -06:00
README.md
sum silly shitty
2026-05-23 11:24:11 -06:00
Specification.md
puttin dis minimum viable product out there to loaf for a bit
2026-05-23 07:09:22 -06:00
test_validate_passphrase.txt
sum updoots
2026-05-23 09:11:08 -06:00
verify-everything.txt
cleanup
2026-05-23 05:46:02 -06:00
vibecoded_audit_pass.sh
sum silly shitty
2026-05-23 11:02:51 -06:00

README.md

Verifiably, Attributably Secure Archives

For when you need to distribute information anonymously, but wish to keep it provably full and intact, but also wish to have options to prove attribution.

Writeup

Purpose

todo

Method

todo

Issues

  • two-way deanonymization is assumed when either method to attribute is used
    • when sha512 method is used, originator is assumed to be the owner of the ed25519 key and vice versa
    • any reveal of either signed note or sha512 attribution passphrase, the other is assumed to belong to the same entity
    • opsec failures can result in two-way deanonymization

Usage

Installation

todo

Usage

todo

todo

  1. x validate attribution thing
  2. ? clean up output
  3. x sanity checks
  4. this README.md
  5. x the README-instructions.txt and placedment for archive
  6. x passphrase strength/length checks
  7. sha256 mode with independant passphrase(?)
  8. encrypt archive option
    1. inner
      1. goes first
      2. gets passphrase
      3. tests passphrase
      4. generates txt file backup
      5. then tests with passphrase
    2. outer
      1. goes second
      2. gets passphrase
      3. tests passphrase
      4. generates txt file backup
      5. then tests with passphrase
  9. random data optional
  10. read -n 1 -s -r -p "In another terminal/window, fill $inner_dir with whatever you please then press any key to continue..."
  11. x now only takes up 2Kb!
  12. only use 128 bytes (1024 bits) x 2
    1. openssl rand -out "$out_dir/.$RANDOM" 128
    2. openssl rand -out "$inner_dir/.$RANDOM" 128
    3. find "$out_dir" -type f -name ".*" -exec chown $USER:$USER "{}" \;
    4. find "$out_dir" -type f -name ".*" -exec chmod 600 "{}" \;
  13. writeup in this README
  14. usage in this README
  15. specification definition
    1. Specification.md
  16. FileMap.md
  17. function: passphrase checkin
    1. match
    2. pass cracklib-check
    3. =>35 chars long
    4. pass call to haveibeenpwned.com api
  18. exit trap with cleanup

Changelog

  • reduced random data to 2x 10Kb
  • reduced random data to 2x 1Kb
  • added password strength check with cracklib-check
  • cleaned up output
  • added housekeeping
    • set perms and ownership on archives and keystore to minimum
    • shred all erronious files and dirs
  • cleaned up code
  • better rng
Reference in New Issue View Git Blame Copy Permalink
S
Description
No description provided
Readme 5.1 MiB
Languages
Shell 100%