Since we mentioned a while ago that we will make some changes to the mod PGP keys, here a post about it.
In the future the PGP keys of mods have to fulfill the following requirements:
Maximum expiration date: key can not be valid longer than 6 months.
Minimum key size: 4096 bit should be the value [less may be insecure and more is not necessary].
If you set an email address it has to be a valid one. No fake or dead email addresses for example.
Mods have to publish a signed message that they are not compromised every X days. It could be for example like a warrant canary that gets published once a month. We are not yet sure about the frequency about it, but we will post an update about it in the near future.
The name of the PGP key has to be exactly the same as the reddit username. This more is for convenience.
If a mod is absent [no posts, comments or other signs that he is alive] for 21 days, he will be removed from his mod position. An exception is for example if he said previously that he will not be online for a specific period of time.
If that mod comes back after getting removed, he needs to sign a message to prove that he is also in control of his PGP key.
I will post my new key in the comments, the ones of the other mods will follow in the near future.
signed with this key https://www.reddit.com/r/DarkNetMarkets/wiki/pgp#wiki_.2Fu.2Fwombat2combat
the old one will be replaced soon.