On 21.05.2008 14:36, Gary Oberbrunner wrote: > Carl-Daniel Hailfinger wrote: >> What happens to those who never logged in *from* a Debian/Ubuntu >> machine? There's no reason to not let them keep their DSA key. > > The point, iiuc, is that if even one such key was sniffed, crank is > compromised. At least that user's account, which is dangerous enough.
OK, but then a statement from the user like "I never logged in anywhere from a Debian/Ubuntu system" should suffice to reenable the existing key. Regards, Carl-Daniel _______________________________________________ Devel mailing list Devel@lists.laptop.org http://lists.laptop.org/listinfo/devel