←back to thread

Sign arbitrary data with your SSH keys

(www.agwa.name)
637 points h1x | 3 comments | 13 Nov 21 09:13 UTC | HN request time: 0.211s | source
1. _wldu ◴[13 Nov 21 14:20 UTC] No.29209902[source]
Age uses this feature of GitHub, as an example, in the documentation:

"Encrypting to a GitHub user

Combining SSH key support and -R, you can easily encrypt a file to the SSH keys listed on a GitHub profile.

$ curl https://github.com/benjojo.keys | age -R - example.jpg > example.jpg.age"

I also like distributing public keys via DNS TXT records and have written about that some here:

https://www.go350.com/posts/age-file-encryption/#age-pki-iss...

replies(2): >>29212936 #>>29218275 #
2. the8472 ◴[13 Nov 21 20:33 UTC] No.29212936[source]
That's encryption (recipient key), not signing (sender key). But yeah (r)age is pretty useful for that.
3. mlangenberg ◴[14 Nov 21 16:39 UTC] No.29218275[source]
Thanks! I was already wondering if this would be possible. Signing data has its uses, but I more often have to transfer sensitive data to other GitHub users and this tool seems really useful for that!