key server security
Kyle Hasselbacher
Kyle Hasselbacher <kyle-exp-1061237384.32ec95@toehold.com>
Thu Jun 19 22:09:02 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Thu, Jun 19, 2003 at 03:09:44PM -0400, David Shaw wrote:
>No. The keyservers are add-only for various reasons. [...]
Sorry if this is a FAQ, but: why?
After a thread about a faked key on a key server (which doesn't check
signatures), I started thinking about a key server which DOES check
signatures, and strips those it finds lacking. How do I attack such a
system? How do I attack if it if it throws away expired data? Is there a
good reason NOT to use a DB backend (like Postgres) to do the storage?
What's the impact of a black hat owning a key server?
If all this is answered somewhere else, I'd love a pointer.
- --
Kyle Hasselbacher
kyle@toehold.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+8hiE10sofiqUxIQRAnliAKCnBUprpc+OOXn/pd28FNy5tbd14ACg0orM
vHtdxMsOP4tqZVMQcbU5cjo=
=Tcxz
-----END PGP SIGNATURE-----