On Wed, Dec 19, 2018 at 10:08:51AM +0100, Kurt Roeckx via dev-security-policy wrote: > On 2018-12-18 11:44, Matt Palmer wrote: > > It's currently loaded with great piles of Debian weak keys (from multiple > > architectures, etc), as well as some keys I've picked up at various times. > > I'm also developing scrapers for various sites where keys routinely get > > dropped. > > You might for instance also want to look at > https://github.com/devttys0/littleblackbox, I'm not sure how useful it is.
Oh my, that's an interesting trove. I was a bit worried at first that the private keys weren't included, but it looks like there's at least some in there, although they're pretty much all 512 bit keys, with a few 1024s and only one 2048. Not surprising, given the age of the repo, but hey, an exposed key's still a key! Thanks for the pointer, I've imported the 2048 bit key. - Matt _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
