2 Q's

Andrew Gallagher andrewg at andrewg.com
Wed Aug 17 20:35:00 CEST 2016

On 17/08/16 19:15, Robert J. Hansen wrote:
> Parcimonie is a key refreshing daemon.  (So far, cool!  It's a real
> problem.  Solving this problem is cool.)  In order to defend against
> completely hypothetical movie plot attacks, it insists on refreshing the
> keys spread out over a long period of time and routing everything
> through Tor.

Public keys are low-latency things anyway, so it matters little if
parcimonie is being overly paranoid for the average user. The only
problem arises when $WORK decides to block tor - but you can fool
parcimonie into using plain https (just need to read between the lines
of the man page).

This is an excellent example of how software ecosystems take on lives
of their own. When the only people who are using your system in anger
are people with different political priorities to yours, don't be
surprised when they fix the problems that you haven't got round to
fixing yet in ways that you don't approve of. ;-)


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20160817/5f51a6c8/attachment.sig>

More information about the Gnupg-users mailing list