Keyserver/security bug 1447 (and 1446 too)

Werner Koch wk at gnupg.org
Tue Dec 4 14:54:47 CET 2012


On Tue,  4 Dec 2012 10:21, gnupg-devel at spodhuis.org said:
> If you want to get out of the issue entirely, I recommend taking a look
> at <http://www.sks-keyservers.net/overview-of-pools.php> and pick one to
> CNAME to.  I suggest "ha.pool.sks-keyservers.net".

Well, that is what I use since 20120619:

keys.gnupg.net.         86400   IN      CNAME   pool.sks-keyservers.net.
http-keys.gnupg.net.    86400   IN      CNAME   ha.pool.sks-keyservers.net.

> If you want to avoid tying into SKS and want to maintain closer control

No time to maintain that - I did this in the past but gave up and
switched to a CNAME.


Salam-Shalom,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.




More information about the Gnupg-devel mailing list