Package: gnupg Version: 1.4.5-1 Severity: important Hello Maintainer,
while Working Offline, I am using n my gpg.conf the option keyserver mailto:[EMAIL PROTECTED] which has a weird behaviour if you have set mutt to autoretrive gpgkeys. If you are in a Mail-Thread, each time you hit an unknown GPG-Key, it send a message, which mean, if the person has respond 10 times in a thread, you will send out 10 requests for the key... This is definitivly a DoS-Attack on the keyserver... specialy, if my Outgoing will be automaticaly flushed, if my sendmail wraper find an internet connection... I have already accidently sendout 480 messages where around the half of them are duplicates or more... I think, gpg should store its requests in a cache and send only a new request if it does not find the key in 10 days or so... (configurable) Note: currently i am doing this with a sendmailwraper... (see previously message to another problem with gpg) Thanks, Greetings and nice Day Michelle Konzack Tamay Dogan Network Open Hardware Developer Debian GNU/Linux Consultant -- Linux-User #280138 with the Linux Counter, http://counter.li.org/ ##################### Debian GNU/Linux Consultant ##################### Michelle Konzack Apt. 917 ICQ #328449886 50, rue de Soultz MSN LinuxMichi 0033/6/61925193 67100 Strasbourg/France IRC #Debian (irc.icq.com)
signature.pgp
Description: Digital signature