Neal Gompa wrote:
>We may want to replace it with a simple Web Key Directory server:
For anyone who is interested, this possibility is being explored here:
https://github.com/fedora-infra/securitas/issues/118
Björn Persson
pgppK6uk4DhSr.pgp
Description: OpenPGP digital signatur
On Wed, Feb 12, 2020 at 11:15:01PM +0100, Björn Persson wrote:
> are sent over TLS, but what do they do if your email provider doesn't
> support SMTP over TLS? Do they refuse your key in that case? My guess
> is that they send the verification email unprotected, and that that's
> one reason why th
On Wed, Feb 12, 2020 at 11:15:01PM +0100, Björn Persson wrote:
> Kevin Fenzi wrote:
> > Fas is on life support mode, but something could be added to the new
> > coming account system interface.
>
> I understand from this that the entire FAS will be replaced. I had
> previously gotten a vague impr
On Wed, Feb 12, 2020 at 11:14:32PM +0100, Björn Persson wrote:
> Kevin Fenzi wrote:
> > well, they are already pretty bad because fas just stores the short
> > version, which has been subject to duplicates for... years now?
>
> My FAS account shows a 64-bit key ID. Yours shows 32 bits. I guess it
Kevin Fenzi wrote:
> Fas is on life support mode, but something could be added to the new
> coming account system interface.
I understand from this that the entire FAS will be replaced. I had
previously gotten a vague impression that the new project would replace
the authentication bits of FAS or
Kevin Fenzi wrote:
> well, they are already pretty bad because fas just stores the short
> version, which has been subject to duplicates for... years now?
My FAS account shows a 64-bit key ID. Yours shows 32 bits. I guess it
displays what you give it. As far as I have heard only 32-bit key IDs
hav
On Sat, Feb 8, 2020 at 10:25 PM Kevin Fenzi wrote:
> On Sat, Feb 08, 2020 at 08:59:40PM +0100, Björn Persson wrote:
> > Josh Boyer wrote:
> > > > We may want to replace it with a simple Web Key Directory server:
> > > > https://wiki.gnupg.org/WKD
> > > >
> > > > That would make it easy to lookup
On Sat, Feb 08, 2020 at 08:59:40PM +0100, Björn Persson wrote:
> Josh Boyer wrote:
> > > We may want to replace it with a simple Web Key Directory server:
> > > https://wiki.gnupg.org/WKD
> > >
> > > That would make it easy to lookup keys based on @fedoraproject.org
> > > email addresses, and since
On Sat, Feb 08, 2020 at 08:58:11PM +0100, Björn Persson wrote:
> Stephen John Smoogen wrote:
> > We plan to turn off and decommission
> > keys.fedoraproject.org on 2020-02-10.
>
> FAS contains PGP key IDs, which are displayed as links to
> keys.fedoraproject.org. Is there a plan to look up keys th
Josh Boyer wrote:
> > We may want to replace it with a simple Web Key Directory server:
> > https://wiki.gnupg.org/WKD
> >
> > That would make it easy to lookup keys based on @fedoraproject.org
> > email addresses, and since keys can be replaced in the directory, it
> > avoids the problems with SKS
Stephen John Smoogen wrote:
> We plan to turn off and decommission
> keys.fedoraproject.org on 2020-02-10.
FAS contains PGP key IDs, which are displayed as links to
keys.fedoraproject.org. Is there a plan to look up keys through some
other key server instead?
It says that these key IDs are used f
On Wed, Feb 5, 2020 at 12:13 PM Neal Gompa wrote:
>
> On Wed, Feb 5, 2020 at 11:57 AM Stephen John Smoogen wrote:
> >
> >
> > Fedora has been part of an GPG sks service[1] for a number of years running
> > off of keys.fedoraproject.org. Last year, there were a number of attacks
> > made on the
On Wed, Feb 5, 2020 at 11:57 AM Stephen John Smoogen wrote:
>
>
> Fedora has been part of an GPG sks service[1] for a number of years running
> off of keys.fedoraproject.org. Last year, there were a number of attacks made
> on the service which due to its 'write-only' nature makes it impossible
13 matches
Mail list logo
