[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
on communication - gpg's el gamal and debian's openssl
- To: [email protected]
- Subject: on communication - gpg's el gamal and debian's openssl
- From: guninski at guninski.com (Georgi Guninski)
- Date: Tue, 20 Sep 2016 21:19:42 +0300
- In-reply-to: <[email protected]>
- References: <35b1810f71c47f304c5dbe72732b7ce5.webmail@localhost> <CAG2tMp4mCC3JczKwK3BrWtvRaf7es0P1O=Q6PyrbCtRUq_55BQ@mail.gmail.com> <[email protected]>
On Tue, Sep 20, 2016 at 12:38:43PM -0400, Steve Kinney wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On the downside, it makes denying that you wrote something all but
> impossible - "somebody stole my signing key and its pass phrase" is
> not what someone who is trying to avoid embarrassment would like to say.
>
lol, tell this to the gpg's guys and gals, who completely compromised
the El Gamal's signing keys and to debian, who memset() what they read
from /dev/random.
search the interwebz for references.