SKS Keyserver Network Under Attack
Mirimir
mirimir at riseup.net
Sun Jun 30 09:36:19 CEST 2019
On 06/29/2019 11:26 PM, Robert J. Hansen wrote:
>> https://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275f
>
> I stand by what I wrote.
>
> As usual, don't read the comments unless you want to despair for humanity.
It sounds like SKS is dead meat. And hagrid is coming. And you advise:
| High-risk users should stop using the keyserver network immediately.
So OK, I can purge requests to SKS keyservers from my machines. But what
about upstream impacts? As I understand it, GnuPG authentication is
pervasive. And I suspect that getting missing keys from SKS is common.
As an error trap, if nothing else.
How bad could this get?
More information about the Gnupg-users
mailing list