Re: Do we need to secure our keyservers against kind of DoS Attacks
2009-02-02 20:08:07On Mon, 2009-02-02 at 11:11 -0800, Jon Callas wrote:
I believe that the problem you're describing is that your connection to a keyserver is passing through some evil router that rewrites your connection. Am I right?
Correct.
Why isn't the solution to this "use SSL/TLS"?
Well it is =) ... I'd just prefer something using OpenPGP for securing the data. It would be somehow embarrassing to depend on X.509 based SSL/TLS in order to get OpenPGP keys, wouldn't it ;-) Of course RFC 5081 is a possible solution. And I'm not sure if the keyservers (sks) and the OpenPGP clients would already support SSL/TLS. Happy wishes, -- Christoph Anton Mitterer Ludwig-Maximilians-Universität München christoph(_dot_)anton(_dot_)mitterer(_at_)physik(_dot_)uni-muenchen(_dot_)de mail(_at_)christoph(_dot_)anton(_dot_)mitterer(_dot_)name
smime.p7s
Description: S/MIME cryptographic signature
| Previous by Date: | Re: how close is OpenPGP tied to SHA1, vedaal |
|---|---|
| Next by Date: | Re: "newbie" questions: GPG a.k.a. GnuPG versus PGP corporation's products ... ; et cetera, gerry_lowry \(alliston ontario canada\) |
| Previous by Thread: | Re: Do we need to secure our keyservers against kind of DoS Attacks, Jon Callas |
| Next by Thread: | "Roles" for subkeys?!, Christoph Anton Mitterer |
| Indexes: | [Date] [Thread] [Top] [All Lists] |