Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)

To: Mike Bird <mgb-debian@yosemite.net>
Cc: debian-devel@lists.debian.org
Subject: Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
From: Peter Samuelson <peter@p12n.org>
Date: Thu, 15 May 2008 12:34:01 -0500
Message-id: <[🔎] 20080515173400.GA2533@p12n.org>
In-reply-to: <[🔎] 200805150915.57042.mgb-debian@yosemite.net>
References: <[🔎] 1210853087.16247.13.camel@localhost> <[🔎] 200805151520.12046.thijs@debian.org> <[🔎] 200805150915.57042.mgb-debian@yosemite.net>

[Mike Bird]
> but we should blame the process.  And fix it.

> it would probably have been better to devote less effort to the
> scanner and more effort to documenting all the kinds of key
> replacements

> Serious efforts are needed

> Second, we must ensure

> This calls for a thorough investigation

> we must carefully avoid

Who is this "we"?  Whose serious efforts?  Who is investigating?  Most
importantly, should we assume that, as in the past, you, Mike Bird,
intend to do nothing but talk?
-- 
Peter Samuelson | org-tld!p12n!peter | http://p12n.org/

Reply to:

Follow-Ups:
- Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Mike Bird <mgb-debian@yosemite.net>
- Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Kevin Buhr <buhr+debian@asaurus.net>

References:
- ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Martin Uecker <muecker@gwdg.de>
- Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Thijs Kinkhorst <thijs@debian.org>
- Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
  - From: Mike Bird <mgb-debian@yosemite.net>

Prev by Date: Re: ssl security desaster
Next by Date: Re: ssl security desaster
Previous by thread: Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
Next by thread: Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
Index(es):
- Date
- Thread