Hi, On Thursday 15 May 2008 15:40, Dennis Gilmore wrote: > users only need to create new keys if you created your key using a debian > based system. keys generated on Fedora or other linux's or unix's are not > susceptible and don't need replacing.
That's unfortunatly only true for RSA keys, not for DSA keys. If you have used DSA keys with a broken openssl, consider your keys compromised. Read http://blog.sesse.net/blog/tech/2008-05-14-17-21_some_maths.html for an explaination. As a result of this, debian.org and freedesktop.org dont allow DSA keys at all anymore. regards, Holger
pgp0275jMRENM.pgp
Description: PGP signature
_______________________________________________ Devel mailing list [email protected] http://lists.laptop.org/listinfo/devel
