incubator-general mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Daniel Shahaf <>
Subject Re: key signing
Date Thu, 11 Oct 2012 01:39:33 GMT
Greg Stein wrote on Wed, Oct 10, 2012 at 21:31:30 -0400:
> Not too much. We still instruct users "take the signatures and verify
> them against". John Blackhat could replace the
> signatures and install his entry into KEYS.

If you use instead of KEYS files in the
dist/ tree, John would have to crack two machines rather than one.

</plug> :-P

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message