What are your plans if you ever have reason to believe that the Debian
archive signing key has been compromised?
http://ftp-master.debian.org/keys.html says:
Key Revocation Procedure
A revokation certificate for the archive key is produced at the time
of the creation of an archive key. The
On Thu, Oct 31, 2013 at 8:55 PM, adrelanos wrote:
What are your plans if you ever have reason to believe that the Debian
archive signing key has been compromised?
It is unlikely that the people responsible for that are reading this
list. I suggest you contact them (DSA, ftpteam) directly.
--
On 10/30/2013 10:49 AM, Norbert Kiszka wrote:
Dnia 2013-10-30, śro o godzinie 11:34 -0200, Djones Boni pisze:
On 30-10-2013 11:05, Celejar wrote:
You're snipping crucial context; my comment above was in response to
this:
For apt-get a self-signed certificate could be used which comes together
On Thu, Oct 31, 2013 at 10:28 AM, Paul Wise p...@debian.org wrote:
On Thu, Oct 31, 2013 at 8:55 PM, adrelanos wrote:
What are your plans if you ever have reason to believe that the Debian
archive signing key has been compromised?
It is unlikely that the people responsible for that are
On Fri, Nov 1, 2013 at 5:21 AM, Jordon Bedwell wrote:
That's almost jokingly ironic.
That's to be expected, the list is mostly noise and in no way required
for them to be able to do their job.
--
bye,
pabs
http://wiki.debian.org/PaulWise
--
To UNSUBSCRIBE, email to
Last-modified header missing -- time-stamps turned off.
2013-10-31 06:40:09 URL:https://access.redhat.com/security/cve/?year=1999
[58267] - cve-1999.html [1]
Last-modified header missing -- time-stamps turned off.
https://access.redhat.com/security/cve/?year=2000:
2013-10-31 06:40:12 ERROR 404:
CVE-2013-5801: TODO: This issue was fixed in Oracle Java, but not in OpenJDK.
Likely not-affected, but needs further check
CVE-2013-5832: TODO: This issue was fixed in Oracle Java, but not in OpenJDK.
Likely not-affected, but needs further check
CVE-2013-5843: TODO: This issue was fixed in
7 matches
Mail list logo
