On Wed, 2023-05-17 at 17:45 +0930, Tim via users wrote: > Tim: > > > Tangentially, I'm not sure of the value of expiring keys, other > > > than > > > for timebombing things. > > Barry: > > In the general case it puts a limit on how long a compromised key > > will be usable. > > Let’s encrypt keys only live for 3 months (?) for example. > > If they've compromised it, couldn't *they* renew it, too?
Not in general. Most key compromises are due to leaks and don't enable the adversary to generate new valid keys. poc _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
