riseup.net OpenPGP Best Practices article

Werner Koch wk at gnupg.org
Thu Jun 26 08:40:14 CEST 2014


On Wed, 25 Jun 2014 21:53, johanw at vulcan.xs4all.nl said:

> While important I don't loose a night's sleep over a DOS attack. It's
> annoying but it doesn't reveal any confidential information.

Nor do I.  However, such a simple DoS is generally consideres a security
bug and thus you should better update.

> Perhaps a "better safe than sorry" approach after remembering that
> RSA-768 was once (in the pgp 2.0 days) advertised as futureproof
> "military-grade" encryption? Attacks only get better in time, never worse.

Back then it was.  Unless you used any computer.  Back then almost all
boxes were vulnerable to several FOO root/supervisor exploit of the
month.


Salam-Shalom,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.




More information about the Gnupg-users mailing list