Re: Moving to stronger keys than 1024D

To: Thorsten Glaser <tg@debian.org>
Cc: debian-project@lists.debian.org
Subject: Re: Moving to stronger keys than 1024D
From: Henrique de Moraes Holschuh <hmh@debian.org>
Date: Tue, 8 Oct 2013 20:41:29 -0300
Message-id: <[🔎] 20131008234129.GA555@khazad-dum.debian.net>
In-reply-to: <[🔎] Pine.BSM.4.64L.1310061317280.8522@herc.mirbsd.org>
References: <[🔎] 20131004230239.GA13313@master.debian.org> <[🔎] CAKTje6FnLta3RNqBLxPE0hG6b2Y=Sd2wg1sM_cNtP8oZJ5cn5Q@mail.gmail.com> <[🔎] 877gdss72x.fsf@windlord.stanford.edu> <[🔎] 20131005054140.GC32795@gwolf.org> <[🔎] 20131005083740.GA12344@upsilon.cc> <[🔎] 20131005151748.GA8231@earth.li> <[🔎] 20131005153218.GA3770@upsilon.cc> <[🔎] Pine.BSM.4.64L.1310061300240.8522@herc.mirbsd.org> <[🔎] Pine.BSM.4.64L.1310061317280.8522@herc.mirbsd.org>

On Sun, 06 Oct 2013, Thorsten Glaser wrote:
> Ah actually this is because 70096AD1 is not unique, and
> Zack has signed both of them. (I assume Asheesh generated
> the newer key to have the same ID as the older – not nice…

Actually, yes, it is quite nice.  Otherwise, all sort of bugs related to
this would still be around just waiting to screw people over.

If you need to uniquely identify keys with no chance of colisions, you must
use the key fingerprint.  It can *still* colide, but if it does, it is a
situation where all bets are off anyway, even gnupg itself is likely to not
do something sane in that case.

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh

Reply to:

References:
- Moving to stronger keys than 1024D
  - From: Aníbal Monsalve Salazar <anibal@debian.org>
- Re: Moving to stronger keys than 1024D
  - From: Paul Wise <pabs@debian.org>
- Re: Moving to stronger keys than 1024D
  - From: Russ Allbery <rra@debian.org>
- Re: Moving to stronger keys than 1024D
  - From: Gunnar Wolf <gwolf@gwolf.org>
- Re: Moving to stronger keys than 1024D
  - From: Stefano Zacchiroli <zack@debian.org>
- Re: Moving to stronger keys than 1024D
  - From: Jonathan McDowell <noodles@earth.li>
- Re: Moving to stronger keys than 1024D
  - From: Stefano Zacchiroli <zack@debian.org>
- Re: Moving to stronger keys than 1024D
  - From: Thorsten Glaser <tg@debian.org>
- Re: Moving to stronger keys than 1024D
  - From: Thorsten Glaser <tg@debian.org>

Prev by Date: DPL helpers meeting on wednesday (2013-10-09)
Next by Date: Mini-Debconf in Cambridge, UK - November 14-17 2013 - update
Previous by thread: Re: Moving to stronger keys than 1024D
Next by thread: Re: Moving to stronger keys than 1024D
Index(es):
- Date
- Thread