The two V3 attacks

Georgi Guninski guninski at guninski.com
Mon Jun 25 09:32:41 CEST 2012


On Mon, Jun 25, 2012 at 09:08:58AM +0200, Werner Koch wrote:
> On Mon, 25 Jun 2012 07:22, guninski at guninski.com said:
> 
> > If they are not new why they are not fixed yet?
> 
> There was no rough consensus to drop v3 packets.  Meanwhile there is no
> WG anymore because the IETF decided that OpenPGP has been done.  
> 
> The outcome of a v5 key format discussion was to wait for SHA-3 and then
> to start the discussion again.
> 
>

You *knowingly* distribute vulnerable warez for a long time?



More information about the Gnupg-devel mailing list