Package: gnupg Version: 1.4.5-1 Severity: important Hello Maintainer,
while Working Offline, I am using n my gpg.conf the option
keyserver mailto:[EMAIL PROTECTED]
which has a weird behaviour if you have set mutt to autoretrive gpgkeys.
If you are in a Mail-Thread, each time you hit an unknown GPG-Key,
it send a message, which mean, if the person has respond 10 times
in a thread, you will send out 10 requests for the key...
This is definitivly a DoS-Attack on the keyserver... specialy, if my
Outgoing will be automaticaly flushed, if my sendmail wraper find an
internet connection...
I have already accidently sendout 480 messages where around the half
of them are duplicates or more...
I think, gpg should store its requests in a cache and send only a new
request if it does not find the key in 10 days or so... (configurable)
Note: currently i am doing this with a sendmailwraper...
(see previously message to another problem with gpg)
Thanks, Greetings and nice Day
Michelle Konzack
Tamay Dogan Network
Open Hardware Developer
Debian GNU/Linux Consultant
--
Linux-User #280138 with the Linux Counter, http://counter.li.org/
##################### Debian GNU/Linux Consultant #####################
Michelle Konzack Apt. 917 ICQ #328449886
50, rue de Soultz MSN LinuxMichi
0033/6/61925193 67100 Strasbourg/France IRC #Debian (irc.icq.com)
signature.pgp
Description: Digital signature
