On 10/16/2017 09:13 PM, Yves-Alexis Perez wrote:
> On Mon, 2017-10-16 at 21:06 +0200, Christian Seiler wrote:
>> Unfortunately, as far as I understand it, there's no easy method for
>> detecting these kinds of broken keys without actually attempting to
>> factorize them - and
Hi,
Recently a vulnerability in a firmware library used by multiple
hardware vendors has been discovered. This vulnerability makes RSA keys
generated on those hardware chips much easier to factorize. One of the
devices affected is the YubiKey 4 family dongle (YubiKey 4, 4 Nano and
4C).
Advisory
On 08/30/2017 01:52 PM, Christian Seiler wrote:
> Am 2017-08-30 09:01, schrieb Marc Haber:
>> And I hope that it's really hard to fuck up here and to send private
>> keys to the keyserver.
>
> I don't think that's possible with GnuPG command line, as far as
> I know G
Am 2017-08-30 14:45, schrieb Marc Haber:
On Wed, Aug 30, 2017 at 01:52:54PM +0200, Christian Seiler wrote:
Well, you could create a completely separate key pair (with a separate
master key) for Debian purposes only.
That would double the effort of obtaining signatures and also double
Am 2017-08-30 09:01, schrieb Marc Haber:
On Tue, Aug 29, 2017 at 04:07:45PM -0300, Henrique de Moraes Holschuh
wrote:
The **public** portion of *every* key (master and all subkeys) go into
the public keyrings and also in the Debian keyring. gnupg will handle
this automatically if you use
On 08/29/2017 07:34 PM, Marc Haber wrote:
> On Fri, Aug 11, 2017 at 01:41:39PM +0100, Jonathan McDowell wrote:
>> * Yubikey. I'm not sure about this; it's entirely closed these days
>> I believe. However they're easily available and I understand
>> they're pretty robust in terms of
Hi,
I don't have anything useful to add to your other comments, but:
On 08/12/2017 02:11 PM, Tollef Fog Heen wrote:
> ]] Christian Seiler
>>> [free CPU designs]
>>> (although I'm sure there are...)
>>
>> There are, take a look at RISC-V, for example. [1]
Hi,
On 08/12/2017 11:12 AM, Dr. Bas Wijnen wrote:
> On Sat, Aug 12, 2017 at 10:06:40AM +0200, Christian Seiler wrote:
>> I don't think this is as black and white as you paint it:
>
> It's certainly not black and white, and as I wrote elsewhere, the line can
> move. But the
Because it's so fun, let me play devil's advocate for a bit:
On 08/12/2017 08:29 AM, Dr. Bas Wijnen wrote:
> No. The question is not "is there non-free software that the program can work
> with?" That would be much too broad, and it would make anything that touches
> the network non-free.
Hi there,
On 08/11/2017 07:29 PM, Sean Whitton wrote:
> On Fri, Aug 11 2017, Christian Seiler wrote:
>
>> - on the computers I use daily the filesystem doesn't contain any
>> private keys, but only stubs for the subkeys so that GnuPG
>> automatically tells me
Hi,
Am 2017-08-11 14:41, schrieb Jonathan McDowell:
* Yubikey. I'm not sure about this; it's entirely closed these days
I believe. However they're easily available and I understand
they're pretty robust in terms of living on a keyring all the
time.
I bought a YubiKey 4 a
On 08/02/2017 10:10 PM, Paul Wise wrote:
> On Wed, Aug 2, 2017 at 3:44 PM, Christian Seiler wrote:
>
>> Unfortunately Debian only supports MIPS64 in the Little Endian
>> variant. There isn't even an unofficial port to the Big Endian
>> variant of MIPS64 that I'm aware of.
Hi,
On 08/02/2017 06:38 PM, Praveen Gandala wrote:
> We are looking for MIPS 64 ( Big Endian) Debian libraries.
>
> I would be grateful if you could share the information on where I can
> find them
Unfortunately Debian only supports MIPS64 in the Little Endian
variant. There isn't even an
Hi Sean,
Am 2017-06-07 22:56, schrieb Sean Whitton:
I am hereby reserving DEP number 15 for my draft DEP, "Reserved
namespaces for DD-approved non-maintainer changes".
I'd like to suggest discussing this DEP on d-devel (which is the
Reply-to for this e-mail). The canonical DEP text is at
Am 2017-06-06 22:19, schrieb Adam Borowski:
Or
that you can sanely run x86 without at least {intel,amd64}-microcode.
Well, on some systems you can install BIOS/UEFI updates that will
load newer microcode very early in the boot process. In that case
you really don't need the
15 matches
Mail list logo