What are the characteristics of a poison key ? What makes it bad ? I wonder if there is an algorithmic way to deal with them instead of a blacklist.
On Thu, 2020-10-15 at 21:45 -0700, Todd Fleisher wrote: > > > > On Oct 15, 2020, at 17:58, Ángel <an...@pgp.16bits.net> wrote: > > > > First of all, those patches protect against a single poison key, > > 0xE41ED3A107A7DBC7. By skipping the merge of changes to it, I > > think. > > I suppose one is better than none. I also block several other > (popular?) keys that are problematic at the NGINX level after having > issues with them in the past causing server instability. It’s far > from a perfect system, but between that and automatic service > restarts when SKS crashes I rarely have to touch anything anymore. > *knocks on wood* > -- Dr Everett (Skip) Carter 0xF29BF36844FB7922 s...@taygeta.com Taygeta Scientific Inc 607 Charles Ave Seaside CA 93955 831-641-0645 x103
signature.asc
Description: This is a digitally signed message part
