[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)

[Mike Bird]
> but we should blame the process.  And fix it.

> it would probably have been better to devote less effort to the
> scanner and more effort to documenting all the kinds of key
> replacements

> Serious efforts are needed

> Second, we must ensure

> This calls for a thorough investigation

> we must carefully avoid

Who is this "we"?  Whose serious efforts?  Who is investigating?  Most
importantly, should we assume that, as in the past, you, Mike Bird,
intend to do nothing but talk?
Peter Samuelson | org-tld!p12n!peter | http://p12n.org/

Reply to: