On Wed, May 14, 2008 at 10:54 PM, Brian May <[EMAIL PROTECTED]> wrote: > Zack Weinberg wrote: >> >> Monotone does not use openssl at all, and so cannot be affected by this >> bug. >> > > Oops. My mistake. I thought it did.
It occurred to me that monotone does have the ability to load signing keys into ssh-agent, which might have meant they got used with the bad random number generator; but monotone only uses RSA keys, so as I understand it that's not a problem. zw _______________________________________________ Monotone-devel mailing list [email protected] http://lists.nongnu.org/mailman/listinfo/monotone-devel
