Changes to sks-keyservers.net pools
Kristian Fiskerstrand
kristian.fiskerstrand at sumptuouscapital.com
Tue May 6 11:08:24 CEST 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Dear lists,
Following the release of SKS 1.1.5[0] the following changes will be
made to the pools of sks-keyservers.net
subset.pool.sks-keyservers.net has been set to a minimum requirement
of SKS 1.1.5 with immediate effect.
Due to CVE-2014-3207[1] I want to bump hkps.pool.sks-keyservers.net to
a requirement of 1.1.5 as this can potentially be in another security
context / zone, however I'm giving this a grace period of (at least)
45-60 days to allow server administrators to upgrade their servers.
I'm not making any changes to the main pool at this point.
References:
[0] http://lists.nongnu.org/archive/html/sks-devel/2014-05/msg00026.html
[1] http://www.openwall.com/lists/oss-security/2014/05/01/16
- --
- ----------------------------
Kristian Fiskerstrand
Blog: http://blog.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Public PGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
"Statistics are like a bikini. What they reveal is suggestive, but
what they conceal is vital."
(Aaron Levenstein)
-----BEGIN PGP SIGNATURE-----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=hzHF
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list