this post was submitted on 18 Jun 2026
1519 points (98.1% liked)

Programmer Humor

32133 readers
550 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 3 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] hirihit640@sh.itjust.works 2 points 3 days ago

honestly, I wouldn't be so hard on yourself. This stuff is way harder than people think. People don't realize how hard it is to establish trust starting from none. Normally you type a website into Google, and Google has already done the work for determining which website is the legit one and which is the shady phishing site, and will filter out the shady site. This convenience does not exist for darknet sites, so you just have to establish trust yourself.

even asking for the true php keys from you right now is submitting to defeat

not necessarily. You can get the pgp keys from random strangers online. It's just not the only source you should rely on. Get it from multiple sources and then verify if they are all the same. If they are, think to yourself how likely it is that all 3 sources are actually the same attacker giving you a fake key.

DM me if you're actually interested in the pgp key and I'll dig it up from my notes