Am Friday, 19. August 2011, 05:11:30 schrieben Sie: > On Fri, Aug 19, 2011 at 03:21:03AM +0200, Reinhold Kainhofer wrote: > > Am Friday 19 August 2011, 02:29:22 schrieb percival.music...@gmail.com: > > > On 2011/08/18 11:42:13, Reinhold wrote: > > > > Why did you change all dsa to rsa? > > > > It's not only savannah, it's basically everone who knows a little bit > > about security... > > Wait, I'm confused again, so I looked it up. > http://savannah.gnu.org/maintenance/SshAccess > says "we recommend using only RSA keys, not DSA". > > Does that page give incorrect advice?
Ah, okay, it's because of the bad random number generator... AFAIK, it's true that with DSA implementation there are much more things that one can mess up and loose security. That's their argument. On the other hand, longer rsa keys have been broken than dsa. Theory vs. practice... Anyway, since Debian apparently shipped a bad random number generator (causing DSA keys to be weak there), some projects like Debian disabled access for dsa keys altogether. So, I retract my objections to rsa keys. Let's change the CG to recomment RSA keys, instead. Cheers, Reinhold -- ------------------------------------------------------------------ Reinhold Kainhofer, reinh...@kainhofer.com, http://reinhold.kainhofer.com/ * Financial & Actuarial Math., Vienna Univ. of Technology, Austria * http://www.fam.tuwien.ac.at/, DVR: 0005886 * LilyPond, Music typesetting, http://www.lilypond.org _______________________________________________ lilypond-devel mailing list lilypond-devel@gnu.org https://lists.gnu.org/mailman/listinfo/lilypond-devel
