On 05/05/2009 03:36 PM, David Moreno wrote: > Also, we will be holding a GPG/PGP key signing parrrrrrtay! If your current primary key is a 1024-bit DSA key (the gpg default for many years), i strongly recommend you make a new key using at least 2048-bit RSA before Friday's meetup. Please see my recent blog on the subject for details [0]. There are suggestions there for folks who already have stronger keys as well. The keysigning party tomorrow is a good opportunity to get your new key firmly embedded in the WoT, as there will be a reasonable number of well-connected people there. Please take these steps now, while SHA-1's collision-resistance is known-weak but not actively exploited. It will help us be prepared to migrate fully away from SHA-1 when that time comes. Regards, --dkg [0] http://www.debian-administration.org/users/dkg/weblog/48
Attachment:
signature.asc
Description: OpenPGP digital signature
_______________________________________________ DebianNYC mailing list DebianNYC@vireo.org http://lists.vireo.org/cgi-bin/mailman/listinfo/debiannyc