Zen Dodd (Tao) • @steadytao Security, infrastructure, systems

Contact

Contact and Key Verification.

For most contact, email me at mail@steadytao.com . Encrypted email is preferred. Signal is available as a secondary encrypted channel. This page sets out the preferred lane, verification details and what context is useful up front.

Email directly Download public key (.gpg)
Preferred contact

Email is the primary channel.

Email

mail@steadytao.com

Use this address for general contact, technical discussion and anything non-urgent. Encrypted email is preferred when appropriate.

Secondary

Signal (steadytao.01)

Better for more immediate or conversational contact, still treated as a secondary channel rather than the default.

OpenPGP

Key discovery and verification.

Fingerprint mail@steadytao.com

C0E1 0545 0570 4F75 7D92 5AB2 6A64 E8AA 2EFB CF5D

Always verify the fingerprint before using the key for sensitive communication.

Key discovery Direct and public

My public key is available directly from this site via WKD and from keys.openpgp.org.

Download public key (.gpg) View WKD path keys.openpgp.org

If you have never used OpenPGP before, the practical flow is simple: get my public key, verify the fingerprint, then use that key to encrypt mail to mail@steadytao.com.

As per OpenPGP Web Key Directory; on GnuPG, this will try WKD automatically and fall back to other clear sources: 

gpg --auto-key-locate clear,wkd --locate-keys mail@steadytao.com
Replying securely Practical note

If you want an encrypted reply, include your public key with your message or ensure it is discoverable from your address.

Which channel to use

Choose the channel that matches the message.

Email

Use email for most contact, technical discussion, longer messages and anything requiring attachments or a durable record.

Encrypted email

Use OpenPGP when the message is private or security-sensitive.

Signal

Use Signal for more urgent or conversational contact where email is unnecessarily heavy.

Notes

A little context helps.

I prefer clear subject lines and concise context.

Encrypted email is welcome when appropriate.

I may not respond immediately, especially to vague outreach.

For project-specific matters, include relevant links or context up front.

Security disclosures

If you are contacting me about a security issue in something I maintain, use encrypted email where possible and include enough detail to reproduce or understand the issue.