Re: Hoping to become a developer soon. Looking for sponsor
On Fri, Feb 15, 2002 at 10:45:04AM +0100, Josselin Mouette wrote:
> le ven 15-02-2002 à 08:29, Dmitry Borodaenko a écrit :
>
> > I think that making keys that never expire is insecure too. In five
> > years from know, when you will get hacked once or twice and grow more
> > paraniod about security, you may regret having your old, weak, unexpired
> > key wandering somewhere and probably deceiving some people to believe
> > that it provides a safe way to exchange data with you.
>
> Isn't that what revokation certificates are for ?
> I prefer to rely on such a certificate locked in my home than on an
> expiration, without knowing when my current key will really become
> insecure. Also, there are many other reasons to stop using a key.
The idea is to handle the case where your house gets hit by an ICBM
(and all similar cases).
--
.''`. ** Debian GNU/Linux ** | Andrew Suffield
: :' : http://www.debian.org/ | Dept. of Computing,
`. `' | Imperial College,
`- -><- | London, UK
Reply to: