distributing signed audio

To: "gopher-project@other.debian.org" <gopher-project@other.debian.org>
Subject: distributing signed audio
From: ed68a458 <ed68a458@protonmail.com>
Date: Sun, 20 Sep 2020 15:01:30 +0000
Message-id: <[🔎] YoNzzcaWWR37i76jWJ73jqr0tr0EvgOTEOBoo83BdUgnVp0GxoQJA21JhIJZVv6fPt7yDYYieJjOIp6noBw5EC8vqWVGUIP0ILb_8dPeSGQ=@protonmail.com>
Reply-to: ed68a458 <ed68a458@protonmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi everybody.

I see people start using gopher to distribute media; audio in particular.

I just want to put my two cents on the discussion: how to distribute signed
audio content on gopher.

I honestly think it is a step forward compared to centralized distributors
(e.g. Spotify, Apple, ...):

1. You manage the distribution by putting in an RSS feed
2. you can sign the content: people are sure it is signed by you, they do not
trust anyone (other than the author himself) and no cuts to the audio (to do
some fake news?) or deplatforming are possible

The process is easy, but the streaming works only with ogg files (and not with
mp3 for example)

Assume you have an audio, we call it `audio.ogg`. You can sign it using gpg. I
put the simple script I use to do that. The script assumes you have more than
one private key (which you should: at least one for encryption and one for
signing). The script, we can call `sign.sh`:

```
#!/bin/sh

file=$1
keyname="put the key name (line after the `pub` one) you see with `gpg -k`"
gpg -u $keyname --sign $file
```

Therefore you do `sign.sh audio.ogg` and the script creates the signed audio
`audio.ogg.gpg`

Assuming you already imported the related public key, you can just do
```
% curl gopher://gopher-site.xyz/audio.ogg.gpg |gpg -d -|mpv -
```

This also works with vlc instead of mpv.

You can see a working example after you imported my private key:
```
curl gopher://ed68a458.xyz/0/pubkey.asc|gpg --import
```

with this line of code:
```
curl gopher://ed68a458.xyz/1/audio/pod-2020-09-15-13.47.ogg.gpg |gpg -d -|mpv -
```


Thank you for your attention. I hope that in the future we will only exchange signed stuff.

Yours,
ed68a458
-----BEGIN PGP SIGNATURE-----
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=Ur9w
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: Re: Any Radio Over Gopher [Bitreich Radio]
Next by Date: Git-backed phlogging engine
Previous by thread: Re: Any Radio Over Gopher [Bitreich Radio]
Next by thread: Git-backed phlogging engine
Index(es):
- Date
- Thread