Re: APT public key updates?

To: debian-devel@lists.debian.org
Subject: Re: APT public key updates?
From: Jon Dowland <lists@alcopop.org>
Date: Fri, 20 Jan 2006 13:30:48 +0000
Message-id: <[🔎] 20060120133048.GP17465@alcopop.org>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20060106073527.GA26675@suffields.me.uk>
References: <[🔎] 2fl64oz1tpi.fsf@saruman.uio.no> <[🔎] 1136416078.4526.1.camel@localhost> <[🔎] 20060105200205.GB20228@kitenet.net> <[🔎] 20060105221306.GA8597@top.ping.de> <[🔎] 2flr77mp5lx.fsf@saruman.uio.no> <[🔎] 20060106003106.GD24652@tennyson.dodds.net> <[🔎] 877j9ep4ny.fsf@becket.becket.net> <[🔎] 20060106033836.GG24652@tennyson.dodds.net> <[🔎] 20060106073527.GA26675@suffields.me.uk>

On Fri, Jan 06, 2006 at 07:35:27AM +0000, Andrew Suffield wrote:
> However, we don't have to do this annually; with a 2048-bit key,
> replacing every five years and generating the new key one year before
> the old one expires should be safe at present.

That's true for the crypto strength issue, however if the key was
rotated that infrequently, the systems that perform the operation will
have succumbed to a lot of bit-rot between invocations and the people
doing it will be out of practise.

-- 
Jon Dowland
http://alcopop.org/

Reply to:

References:
- APT public key updates?
  - From: Petter Reinholdtsen <pere@hungry.com>
- Re: APT public key updates?
  - From: Daniel Leidert <daniel.leidert.spam@gmx.net>
- Re: APT public key updates?
  - From: Joey Hess <joeyh@debian.org>
- Re: APT public key updates?
  - From: Michael Vogt <mvo@debian.org>
- Re: APT public key updates?
  - From: Petter Reinholdtsen <pere@hungry.com>
- Re: APT public key updates?
  - From: Steve Langasek <vorlon@debian.org>
- Re: APT public key updates?
  - From: Thomas Bushnell BSG <tb@becket.net>
- Re: APT public key updates?
  - From: Steve Langasek <vorlon@debian.org>
- Re: APT public key updates?
  - From: Andrew Suffield <asuffield@debian.org>

Prev by Date: Re: statement from one of the klik project members [was: The klik project and Debian]
Next by Date: Re: Backports
Previous by thread: Re: APT public key updates?
Next by thread: Re: APT public key updates?
Index(es):
- Date
- Thread