Anonymous ID: e4be4b July 30, 2018, 9 p.m. No.2366039   🗄️.is 🔗kun   >>9040 >>0218 >>3197

>>2354516

> Is there such a thing as anonymous github

I'm starting to evaluate git-ssb for myself. I'm not sure yet about how well it would withstand attacks by determined adversaries. It is decentralized and requires some extra software running, I'm not sure if that counts as "dark web".

https://git-ssb.celehner.com/%25RPKzL382v2fAia5HuDNHD5kkFdlP7bGvXQApSXqOBwc%3D.sha256

 

It's built on top of secure-scuttlebutt:

"A database of unforgeable append-only feeds, optimized for efficient replication for peer to peer protocols."

https://github.com/ssbc/secure-scuttlebutt

 

Social network application (kind of like twitter):

https://github.com/ssbc/patchwork

 

>>2352596

> Code signing solves the tampering problem, but it doesn't prevent malicious actors from getting at me and taking over the distribution infrastructure.

 

Secure Scuttlebutt has similar benefits to a blockchain. Anyone can distribute your messages (not tamper), and you can't rewrite your post history. Kind of like with Git how every commit has a hash that is based (in part) on the commit history. So if you were compromised, only messages you write from that point forward would be affected.

 

Conceivably, you could publish messages in the past if you create them in order. So for example you could create a "Q" identity (public/private keys) and import all Q posts in order and have them contain the desired timestamps. You wouldn't be able to change them once published to the network, kind of like with Git's commit history.

Anonymous ID: e4be4b July 30, 2018, 10:01 p.m. No.2366980   🗄️.is 🔗kun

>>2366235

For code signing, PGP (gpg) is great. Git supports commit signing with it, and it is used by major linux distros by their package management utilities.