About
Daniel StoneX ninja
Melbourne, AU
Links
my websitemy photos at flickr
x.org
eat.fi
Categories
/ (86)tech/ (84)
collabora/ (1)
fdo/ (9)
lca/ (1)
ubuntu/ (6)
x/ (41)
xds/ (3)
travel/ (2)
Archives
2010-Mar2010-Feb
2009-Dec
2009-Oct
2009-Sep
2009-Aug
2009-Jul
2009-Apr
2009-Mar
2008-Aug
2008-Jul
2008-Jun
2008-May
2008-Feb
2007-Oct
2007-Sep
2007-Jul
2007-Jun
2007-May
2007-Mar
2007-Jan
2006-Nov
2006-Aug
2006-May
2006-Apr
2006-Mar
2006-Feb
2006-Jan
2005-Dec
2005-Nov
2005-Oct
2005-Sep
2005-Aug
2005-Jul
2005-Jun
2005-Apr
2005-Mar
2005-Feb
2005-Jan
2004-Dec
2004-Nov
2004-Oct
2004-Sep
2004-Jun
2004-May
2004-Mar
Calendar
| < | May 2008 | > | ||||
| Su | Mo | Tu | We | Th | Fr | Sa |
| 1 | 2 | 3 | ||||
| 4 | 5 | 6 | 7 | 8 | 9 | 10 |
| 11 | 12 | 13 | 14 | 15 | 16 | 17 |
| 18 | 19 | 20 | 21 | 22 | 23 | 24 |
| 25 | 26 | 27 | 28 | 29 | 30 | 31 |
Sat, 17 May 2008
A quick FAQ: the reason all DSA keys have been removed from fd.o and we aren't
accepting any new ones is that they are vulnerable to man-in-the-middle attacks
if they have ever been used (not just generated) on a system with a
predictable RNG: see Steinar's summary
of the maths. We're going with precedent of debian.org rejecting DSA keys,
and a general desire to be safe rather than sorry. RSA keys are the default in
OpenSSH anyway, so I'm not really sure why you'd want to generate DSA.
[03:16 | |
# | benny page - swagger | couch ]