Re: [Sks-devel] sks-network
It does now. $ host -t LOC keyserver.borgnet.us keyserver.borgnet.us location 47 40 5.370 N 117 26 20.800 W 579.00m 1m 1m 10m $ dig keyserver.borgnet.us LOC ; <<>> DiG 9.7.3 <<>> keyserver.borgnet.us LOC ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25950 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 7, ADDITIONAL: 7 ;; QUESTION SECTION: ;keyserver.borgnet.us. IN LOC ;; ANSWER SECTION: keyserver.borgnet.us. 38400 IN LOC 47 40 5.370 N 117 26 20.800 W 579.00m 1m 1m 10m Regards, Scott Grayban /"\ \ / ASCII RIBBON XFIGHT BREAST CANCER / \ John Clizbe said the following on 05/21/2011 04:51 PM: > Scott Grayban wrote: > > > BTW my dns does have the LOC record. > >>> borgnet.us. 38400 IN LOC 47 40 5.370 N 117 26 > > 20.800 W 579.00m 1m 1m 10m > > Your domain may. Your server doesn't. > > sks@yogi:~# host -t LOC keyserver.borgnet.us > keyserver.borgnet.us has no LOC record > sks@yogi:~# > > HTH > > ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
If you had read the second and third emails about this I was first accused of trying to set rules which was not the case. Second my answer was nearly the same one just given to me after I asked for peering see Sebastian Urbach email -> https://lists.nongnu.org/archive/html/sks-devel/2011-05/msg00030.html When I replied I was jumped on for trying to set rules which wasn't my intentions... when I was still getting flak I replied that wouldn't want to peer with anyone that had dynamic IP's and that went viral and me being attack. Frankly I don't care if the peering is done via rag-tag rules that aren't posted any place, but according to Sebastian others feel the same about static IP's and permanent connection and I have the same thoughts because peering should be stable and not run with dynamic IP's even if people here want to call it semi-static it is still dynamic. > From: Sebastian Urbach > Subject: Re: [Sks-devel] seeking peers for keyserver.borgnet.us > Date: Wed, 18 May 2011 22:50:45 +0200 > > On Wed, 18 May 2011 12:32:45 -0700 > Scott Grayban wrote: > > Hi Scott, > > > I am looking for peers for a new SKS keyserver installation. > > It seems that you have a permanent conneciton an not a dialup with a > dynamic ip, am i right ? > > Thats an important info for some of us :-) > > -- > > Mit freundlichen Gruessen / yours sincerely > > Sebastian Urbach > > -- > Convictions are more dangerous enemies of truth than lies. > -- > Friedrich Nietzsche (1844 - 1900) > German philosopher, poet and classical philologist > > Attachment: Regards, Scott Grayban /"\ \ / ASCII RIBBON XFIGHT BREAST CANCER / \ Arnold said the following on 05/21/2011 02:40 PM: > Hello Scott, > > If I am right, your first message to this list was just three days ago, > requesting peers for a new server installation. > > IMHO, it is impolite to tell a community what rules they should adhere to, > if you're welcomed to that community only three days ago. This is especially > the case if you are touching subjects that have been discussed (long) before. > > If you don't feel comfortable in our small community of SKS server admins > and with the rules we (seem to) adhere to, then don't bother and find other > SKS server admins to peer with and set up your own network of SKS servers. > > Arnold > > > > > ___ > Sks-devel mailing list > Sks-devel@nongnu.org > https://lists.nongnu.org/mailman/listinfo/sks-devel > ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Scott Grayban wrote: > > BTW my dns does have the LOC record. >>> borgnet.us. 38400 IN LOC 47 40 5.370 N 117 26 > 20.800 W 579.00m 1m 1m 10m Your domain may. Your server doesn't. sks@yogi:~# host -t LOC keyserver.borgnet.us keyserver.borgnet.us has no LOC record sks@yogi:~# HTH - -- John P. Clizbe Inet: John (a) GingerBear DAWT net FSF Assoc #995 / FSFE Fellow #1797 hkp://keyserver.gingerbear.net or mailto:pgp-public-k...@gingerbear.net?subject=HELP Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12-svn5502-2010-12-23 (Windows XP) Comment: When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! Comment: Be part of the £37 ECHELON -- Use Strong Encryption. Comment: It's YOUR right - for the time being. Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBCAAGBQJN2E/fAAoJECMTMVxDW9A0BhUH/00k/kAPOV3eoEpyeogeP+qk s8s3bhz/oGzV7pB681ynEeJengQlKcRxVpCjOsr7XtXnMK9ikuBUC3hMm4UVIk7y 4vKQ3j8F+dtLnTFNIEyuIfpTIKiWQ/tkT0grVUV50aOZbEJVMxhIrqYkfYRQ8KTg VQ/MwI8Z78WtgoqJJVm7yqx1lgIJPPSwI5QuN7IMbC4Px1A47ZbicDeeqih+mR5Q gv509bnNcGgQvqYg6wpFGYgrQJ3ZVH5d5/170TCC3NbBGHIwrmpMqPOukIr4fu0v xD/Uv3dNjWSt1dZ1f7g5QkKILkZ78CWnPiXvmKVQnglbL0kNew+onLjSmAus2sKI XgQBEQgABgUCTdhP3wAKCRDrXhnz1laYJWeRAPsHLme0kEwFNMp0LD9W3u8kzA9f W/xLjkeGEYvrPaCbNAD/a+so39j0n5nzmrsaJmO3VjbCpgw6YzrvIy2Qfma1uxE= =4dbj -END PGP SIGNATURE- ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
On 2011-05-21 at 12:30 -0500, John Clizbe wrote: > There has never been a set format requirement for the email seeking peers. > There's been a suggestion or two, but I don't recall a vote. Part of that may be my fault: when I wrote the http://code.google.com/p/sks-keyserver/wiki/Peering document, I went through various steps I considered useful and drafted an email template of "things that various people would like to see, that demonstrated that you read instruction and have clue and is most likely to get you peers" (connectivity, location, age of key-dump, proving that you *have* loaded a key-dump, etc). I don't think format requirements count anywhere near as much as content requirements :) and I just tried to give good advice. If other people are regarding it as a mandate then I've erred. Advice for tuning the wiki page contents appreciated. -Phil ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
Hello Scott, If I am right, your first message to this list was just three days ago, requesting peers for a new server installation. IMHO, it is impolite to tell a community what rules they should adhere to, if you're welcomed to that community only three days ago. This is especially the case if you are touching subjects that have been discussed (long) before. If you don't feel comfortable in our small community of SKS server admins and with the rules we (seem to) adhere to, then don't bother and find other SKS server admins to peer with and set up your own network of SKS servers. Arnold signature.asc Description: OpenPGP digital signature ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] Woohoo!
My apologies for being slow. Getting those patches uploaded had just slipped off my stack. I don't really have a lot of time to devote to sks these days. That said, I'll try to be more responsive than I have been in reviewing and accepting patches. Putting them up as clones on the google code site is a nice way to propose them. y On Sat, May 21, 2011 at 1:52 PM, John Clizbe wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > John Clizbe wrote: > > Kim Minh Kaplan wrote: > >> http://code.google.com/p/sks-keyserver/updates/list shows 12 new > >> revisions (one merge) in the repository this week. > > > > No idea what happened to mine. Yaron said he'd look at them but never > heard back. > > D'OH!! There they are, the 10 pushed at one time. > -BEGIN PGP SIGNATURE- > Version: GnuPG v1.4.12-svn5502-2010-12-23 (Windows XP) > Comment: When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! > Comment: Be part of the £€37 ECHELON -- Use Strong Encryption. > Comment: It's YOUR right - for the time being. > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iQEcBAEBCAAGBQJN1/vqAAoJECMTMVxDW9A0w74H/jy/PktWUGf8H5HqXY9ydLTE > Vgftk5DK+WE6MK2nIp+oWOMp42xtouxktliIyGLNB/TamID3IZxhCmjzCUlNb9Ox > 3Zi5DC2dasek+TRIZrRlvauYiFFjjbnZu/x7OUSrtfwH4VjIRL8CxZs83KKY26be > YuurCGwKczLSVKzvajeJ+3VCJa4pkx+088Ye6uzw/TJ7FYcegjk0TTJFVffb8YDA > Ydj5lXlttG44Lz5oZo53aCsGR4xBTPeuJ1ZN0cblZ7PdIWFDOFY1uT/tftcV6xtw > SRTFGW0wJcAP2zew46FY1qdPmLw7oZDoMLtj0u0KWAr+AkN3Jdjp4LmSawD8CFKI > XgQBEQgABgUCTdf76gAKCRDrXhnz1laYJT4xAP9GL0rcjWkF1JdPEUc4PdjBvND7 > p0fWzfplO9MhndhXCQD/c0WFd7VQS7FV5rG6IwyrnhVbMVr3njRRJuszTeTJvYY= > =CpXE > -END PGP SIGNATURE- > > ___ > Sks-devel mailing list > Sks-devel@nongnu.org > https://lists.nongnu.org/mailman/listinfo/sks-devel > ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
> And there is no such thing as semi-static IP's it's static or > dynamic, if we are going to explain dns let's be correct about it :) Well, if we're being correct about it... all IPs are dynamic. "Static" just means "for a given time frame, it doesn't change." I have one friend who's had the same IP address on a DHCP lease from his cable provider for over four years now: is that a static IP, or is the fact that it could change tomorrow enough to make it dynamic? You are free to make whatever policy you want for your own servers. For me, I find that it's more useful to worry about "can I resolve this hostname?" than it is to worry about whether an IP changes. > A decent pipe -- we all know that anything less then a 1mb pipe is just > going to cause issues. I don't know this. Given the typical bandwidth used by SKS, a 128k ISDN line would seem perfectly adequate. The test should be, "do you have enough spare capacity to effectively participate," not "do you meet this arbitrary requirement." If I'm using a 1.544 MB/s T1 line to BitTorrent ISOs, well, I wouldn't consider that to be a great setup for a keyserver: although I meet the arbitrary 1Mb cutoff, I likely don't have enough spare capacity to effectively participate. (In fairness, you make this point yourself later on, which confuses me: why do you maintain both that it's spare capacity which is needed, as well as an arbitrary cutoff of 1Mb/sec? The two claims seem contradictory.) > If there aren't standards set now what will happen in a couple years? I imagine that in a couple of years we will continue to run according to "loose consensus and available servers." > I have no intentions of stirring up a bees nest but maybe SKS should > have some standards to enforce. I personally want to be sure I am > peering with stable servers and not some desktop a person uses to play > games on. I often shell into my server and use it to log into MUDs. Why should that disqualify me? ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
On May 21, 2011, at 2:22 PM, Scott Grayban wrote: > I won't peer with people that do not have a static IP. The whole idea > about peering is to provide stability throughout the network pool. If > this isn't part of the peering rules it should be. > That is up to you to choose your policy. > And there is no such thing as semi-static IP's it's static or > dynamic, if we are going to explain dns let's be correct about it :) > Sure there are: I have a TWC dynamically assigned IP address at keye.rpm5.org. It changes like once a year, and is in user for IPv6 tunneling and more. Other orgs change their static IP's more often than TWC changes my dynamically assiged IP. That's gud enuf to qualify for "semi-static IP's" for some reasonable definition of "semi-static". > A decent pipe -- we all know that anything less then a 1mb pipe is just > going to cause issues. First, down/up are never the same speed, down is > usually faster then up and most ISP's don't offer a up faster then > 256/512 unless you have your own T1 or faster line. Some newer DSLv2 > lines offer a better up/down ratio but that is few and far between > especially in North America. > Do we know that <1Mb pipe is an issue? According to what criteria? Yours? > If people are wanting to peer using a home desktop and they are playing > games/movies that will impact the purpose of peering. Bandwidth will be > sucked dry in no time backing up everything. > Sez who? I run BOINC instead of movies and haven't seen an issue with 100% CPU utilization 24 hours a day. > If there aren't standards set now what will happen in a couple years ? We'll all be older ... and "standards" won't yet exist. > Every IT organization has some sort of peering rules and if SKS peering > doesn't them we can't even prove we have a stable pool of servers. > Imagine root dns servers done this way. > I can imagine many things: hmm mebbe if I wore a suit I could dress up as an IT organization or a root DNS server on Halloween ... nah. > I have no intentions of stirring up a bees nest but maybe SKS should > have some standards to enforce. I personally want to be sure I am > peering with stable servers and not some desktop a person uses to play > games on. > SO stop stirring or start enforcing. Entirely your decision. > BTW my dns does have the LOC record. >>> borgnet.us. 38400 IN LOC 47 40 5.370 N 117 26 > 20.800 W 579.00m 1m 1m 10m > So does mine. Perjhaps I should use Maidenhead coordinates: FM05lw as a LOC record. 73 de Jeff smime.p7s Description: S/MIME cryptographic signature ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
I won't peer with people that do not have a static IP. The whole idea about peering is to provide stability throughout the network pool. If this isn't part of the peering rules it should be. And there is no such thing as semi-static IP's it's static or dynamic, if we are going to explain dns let's be correct about it :) A decent pipe -- we all know that anything less then a 1mb pipe is just going to cause issues. First, down/up are never the same speed, down is usually faster then up and most ISP's don't offer a up faster then 256/512 unless you have your own T1 or faster line. Some newer DSLv2 lines offer a better up/down ratio but that is few and far between especially in North America. If people are wanting to peer using a home desktop and they are playing games/movies that will impact the purpose of peering. Bandwidth will be sucked dry in no time backing up everything. If there aren't standards set now what will happen in a couple years ? Every IT organization has some sort of peering rules and if SKS peering doesn't them we can't even prove we have a stable pool of servers. Imagine root dns servers done this way. I have no intentions of stirring up a bees nest but maybe SKS should have some standards to enforce. I personally want to be sure I am peering with stable servers and not some desktop a person uses to play games on. BTW my dns does have the LOC record. >> borgnet.us. 38400 IN LOC 47 40 5.370 N 117 26 20.800 W 579.00m 1m 1m 10m Regards, Scott Grayban /"\ \ / ASCII RIBBON XFIGHT BREAST CANCER / \ John Clizbe said the following on 05/21/2011 10:30 AM: > Scott Grayban wrote: > > You need to have a static IP, no dialup and a decent net pipe. Having > > IPv6 is a plus as well. > > These may be your strict requirements, but I've not ever seen them > expressed by > the community and I've been here a while. > > The only people for whom static IPs for peers are important are those > running > strict firewalls and only allowing traffic from designated peers. > About the > only thing I can think of that is a "strict" requirement is that a > machine be > able to be reliably reached through the DNS. Cable and DSL > connections are > subject to changing address. From my experience, the frequency varies > from when > the operator does network maintenance in the case of T-W to every time > the modem > burps in the case of AT&T. > > What's a decent net pipe? I'll agree it not dialup. But what about > ISDN? One of > my servers does quite adequately on a 3M/512k DSL connection (It's the > max AT&T > has in my area without subscribing to U-Verse.) > > We ask folks to use a recent dump, but it's not carved in stone, > neither is > knowing where they got it. > > There has never been a set format requirement for the email seeking peers. > There's been a suggestion or two, but I don't recall a vote. > > A recommendation I'd like to propose is that each host also have a LOC > record in > DNS. This would facilitate physically mapping peers. See > http://hewgill.com/tools/dnsloc for an example application. > keyserver.gingerbear.net may be used as input. > ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] Woohoo!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 John Clizbe wrote: > Kim Minh Kaplan wrote: >> http://code.google.com/p/sks-keyserver/updates/list shows 12 new >> revisions (one merge) in the repository this week. > > No idea what happened to mine. Yaron said he'd look at them but never heard > back. D'OH!! There they are, the 10 pushed at one time. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12-svn5502-2010-12-23 (Windows XP) Comment: When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! Comment: Be part of the £37 ECHELON -- Use Strong Encryption. Comment: It's YOUR right - for the time being. Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBCAAGBQJN1/vqAAoJECMTMVxDW9A0w74H/jy/PktWUGf8H5HqXY9ydLTE Vgftk5DK+WE6MK2nIp+oWOMp42xtouxktliIyGLNB/TamID3IZxhCmjzCUlNb9Ox 3Zi5DC2dasek+TRIZrRlvauYiFFjjbnZu/x7OUSrtfwH4VjIRL8CxZs83KKY26be YuurCGwKczLSVKzvajeJ+3VCJa4pkx+088Ye6uzw/TJ7FYcegjk0TTJFVffb8YDA Ydj5lXlttG44Lz5oZo53aCsGR4xBTPeuJ1ZN0cblZ7PdIWFDOFY1uT/tftcV6xtw SRTFGW0wJcAP2zew46FY1qdPmLw7oZDoMLtj0u0KWAr+AkN3Jdjp4LmSawD8CFKI XgQBEQgABgUCTdf76gAKCRDrXhnz1laYJT4xAP9GL0rcjWkF1JdPEUc4PdjBvND7 p0fWzfplO9MhndhXCQD/c0WFd7VQS7FV5rG6IwyrnhVbMVr3njRRJuszTeTJvYY= =CpXE -END PGP SIGNATURE- ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] Woohoo!
John Clizb writes: > Kim Minh Kaplan wrote: >> http://code.google.com/p/sks-keyserver/updates/list shows 12 new >> revisions (one merge) in the repository this week. > > No idea what happened to mine. Yaron said he'd look at them but never heard > back. Look better: 10 of those revisions are yours. -- Kim Minh ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] Woohoo!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Kim Minh Kaplan wrote: > http://code.google.com/p/sks-keyserver/updates/list shows 12 new > revisions (one merge) in the repository this week. No idea what happened to mine. Yaron said he'd look at them but never heard back. - -- John P. Clizbe Inet: John (a) GingerBear DAWT net FSF Assoc #995 / FSFE Fellow #1797 hkp://keyserver.gingerbear.net or mailto:pgp-public-k...@gingerbear.net?subject=HELP Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12-svn5502-2010-12-23 (Windows XP) Comment: When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! Comment: Be part of the £37 ECHELON -- Use Strong Encryption. Comment: It's YOUR right - for the time being. Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBCAAGBQJN1/o9AAoJECMTMVxDW9A04uQIAIRJ+R8HoXvjpaZODMUacgX1 JJFkID9L0h90LLhL8Re9ncol+BQJz2G/9mDjTK+A87PP2U3crqKJLDwnfWvkqzZH bImTTFpOEN3R+exG7L+BG0bsQoOhFRtHoC5/jQN229mJx5ujYz4nuKaBn4KfmrQk i8QqN0IInSVtZeNE01IXfhZW2lJ70il8MhPSX5D2Y9ZCCRl8vENWVeUZsSHUFZn+ 9NkPmES4tRqXUZi5fUi34tqb95ukueBrw3+wuwS2VBUtOkmpxK9sj6eFRez/2q+7 It5ODjw/hjcsXrmd1ZMCniDh87r0LXvuJzeVveAa2+6DZYrHcPWzds+JEWJjiG6I XgQBEQgABgUCTdf6PQAKCRDrXhnz1laYJW21AP9I3SzVOqNHWbWhiUP3wxw/b9R8 mwZkWPmfT9sOviIQYQD8CgBOMTHoD/FQPqouDF6XxoPv0PzdlJ4ZKrvNJWpUxp4= =1m/M -END PGP SIGNATURE- ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
[Sks-devel] Woohoo!
http://code.google.com/p/sks-keyserver/updates/list shows 12 new revisions (one merge) in the repository this week. -- Kim Minh ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Scott Grayban wrote: > You need to have a static IP, no dialup and a decent net pipe. Having > IPv6 is a plus as well. > These may be your strict requirements, but I've not ever seen them expressed by the community and I've been here a while. The only people for whom static IPs for peers are important are those running strict firewalls and only allowing traffic from designated peers. About the only thing I can think of that is a "strict" requirement is that a machine be able to be reliably reached through the DNS. Cable and DSL connections are subject to changing address. From my experience, the frequency varies from when the operator does network maintenance in the case of T-W to every time the modem burps in the case of AT&T. What's a decent net pipe? I'll agree it not dialup. But what about ISDN? One of my servers does quite adequately on a 3M/512k DSL connection (It's the max AT&T has in my area without subscribing to U-Verse.) We ask folks to use a recent dump, but it's not carved in stone, neither is knowing where they got it. There has never been a set format requirement for the email seeking peers. There's been a suggestion or two, but I don't recall a vote. A recommendation I'd like to propose is that each host also have a LOC record in DNS. This would facilitate physically mapping peers. See http://hewgill.com/tools/dnsloc for an example application. keyserver.gingerbear.net may be used as input. - -- John P. Clizbe Inet: John (a) GingerBear DAWT net FSF Assoc #995 / FSFE Fellow #1797 hkp://keyserver.gingerbear.net or mailto:pgp-public-k...@gingerbear.net?subject=HELP Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12-svn5502-2010-12-23 (Windows XP) Comment: When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl! Comment: Be part of the £37 ECHELON -- Use Strong Encryption. Comment: It's YOUR right - for the time being. Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBCAAGBQJN1/alAAoJECMTMVxDW9A0A2kIAJO21UPwQSpKezLbgodwhOy5 AaS4DYw+i20Ery2rQTX2isVykfkAvKsj2EZOPOqUk3m4CSYnDSvUA+kE0us81dDH ZXr6IiF3jdV8ajgePVdbqTX1qa5TfI7jXyLR/lDQkTMvo2kyniTsudO+m+gZct48 TBLVnJ3J7UPH+rQD3ulPsNfd7U0g5rG5woKgd6EvPdAMWTcHTWM5xSA++U3meIQ1 yz9oorCB+uLJRl8zd+Hd7nLOAuHUpslOqra7oT/30IspoWkuJujVA8puzvUGpE52 Mu6iz2YHMfNnN9ij2NXACUAlo2Rv9X0X+yQMXSK/o5aKN7x70it1ivO/Y3EvdEmI XgQBEQgABgUCTdf2pQAKCRDrXhnz1laYJRBtAP0e/CmVE8LZy26aMLDLUvvTVD65 8jdCC1k1Jg0wV37BkwD7BEZhzLovLs7DmIOJmTDHntRZsoPtwV5iLUvIzvQKVd8= =z8aD -END PGP SIGNATURE- ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
> Why? There are some SKS servers who are sitting on the DSL lines > and have semi-static IPs. So, AFAIK, that's not a strict requirement. The strict requirement is, "your machine's IP address must be reliably accessible via DNS." So long as that's met, it's all good. And even then, "strict requirements" are more "the community of SKS keyserver operators expects this, unless you've got some really compelling reason otherwise." If you were running an SKS keyserver on the moon and were only accessible via an IP address which changed daily and no DNS, I have no doubt keyserver operators would be lining up to peer with you anyway just for the geek cred of being able to say "I'm peering with Free Luna!" :) PGP.sig Description: This is a digitally signed message part ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
[Sks-devel] Peering Request
Hello, I have a new keyserver running and would like to peer with other servers. I am running SKS version 1.1.1+dpkgv3-6 (Debian package), on key.ip6.li, this is a private machine. The server is physically located in Germany (EU). The machine has IPv6 connectivity. I have loaded a keydump from key-server.de, dated 2011-05-21. I see 2952010 keys loaded. For operational issues, please contact me directly. key.ip6.li 11370 # Christian Felsing 0x5386E2A0 Thank you Christian ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
Yo! Sat, May 21, 2011 at 02:30:33AM -0700, Scott Grayban wrote: > You need to have a static IP, Why? There are some SKS servers who are sitting on the DSL lines and have semi-static IPs. So, AFAIK, that's not a strict requirement. -- rea pgpYegBL2iLRS.pgp Description: PGP signature ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
[Sks-devel] SKS dumps
Jon, You can also add my dump to the list. It is created every Sunday at 2:00 AM PST - GMT -7 via cron. http://keyserver.borgnet.us/dump/ >> In section "Pre-Populate Database" 2 of 3 links are broken. >> >> May I suggest you to delete outdated ones and add >> http://keys.niif.hu/keydump/ ? >> My dump is refreshed every Monday. > > > Done! Thanks for the suggestion, Gabor. > > Thanks also to Sebastian who emailed me the URL for his weekly dumps. > I've added that to the list as well, and made notes of which day of the > week each dump is generated. > > Cheers > -- > Jonathan Oxer > Ph +61 4 3851 6600 > Signed / encrypted email preferred: -- Regards, Scott Grayban /"\ \ / ASCII RIBBON XFIGHT BREAST CANCER / \ ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
I added you server, too Thank you Christian Am 21.05.2011 13:07, schrieb Scott Grayban: > I added you to my membership list, please add mine. > > keyserver.borgnet.us 11370 # Scott Grayban > 0x29ba72e529caa214 > > My sks server is down right now while the system is running a key dump. > As soon as it's backup you will sync with me. ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
I added you to my membership list, please add mine. keyserver.borgnet.us 11370 # Scott Grayban 0x29ba72e529caa214 My sks server is down right now while the system is running a key dump. As soon as it's backup you will sync with me. Regards, Scott Grayban /"\ \ / ASCII RIBBON XFIGHT BREAST CANCER / \ Christian Felsing said the following on 05/21/2011 03:58 AM: > Hi Scott, > > I followed instructions from http://www.keysigning.org/sks/ > > hopefully nothing forgotten: > > I am looking for peers for a new SKS keyserver installation. > I am running SKS version 1.1.1, on key.ip6.li, this is a private machine > (but operated like a commercial system). > The server is physically located in Frankfurt a.M. / Germany. > The machine has both IPv4 and IPv6 connectivity, 193.17.17.6 / > 2a01:7a0:1::6. > > I have loaded a keydump at 2011-05-20 from ftp://key-server.de/dump, I > see 2952010 keys loaded. > > For operational issues, please contact me directly. > > key.ip6.li 11370 # Christian Felsing 0x5386E2A0 > > Regards > Christian > > > Am 21.05.2011 12:22, schrieb Scott Grayban: > >> Actually you should follow the same format located @ >> https://lists.nongnu.org/archive/html/sks-devel/2011-05/msg00029.html >> using your info. >> > ___ > Sks-devel mailing list > Sks-devel@nongnu.org > https://lists.nongnu.org/mailman/listinfo/sks-devel > > ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
Hi Scott, I followed instructions from http://www.keysigning.org/sks/ hopefully nothing forgotten: I am looking for peers for a new SKS keyserver installation. I am running SKS version 1.1.1, on key.ip6.li, this is a private machine (but operated like a commercial system). The server is physically located in Frankfurt a.M. / Germany. The machine has both IPv4 and IPv6 connectivity, 193.17.17.6 / 2a01:7a0:1::6. I have loaded a keydump at 2011-05-20 from ftp://key-server.de/dump, I see 2952010 keys loaded. For operational issues, please contact me directly. key.ip6.li 11370 # Christian Felsing 0x5386E2A0 Regards Christian Am 21.05.2011 12:22, schrieb Scott Grayban: > Actually you should follow the same format located @ > https://lists.nongnu.org/archive/html/sks-devel/2011-05/msg00029.html > using your info. ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
On 2011-05-20 at 22:48 +0200, Christian Felsing wrote: > I am interested to join the SKS network. What are the requirements to do > so besides installing an d running SKS ? You might find: http://code.google.com/p/sks-keyserver/wiki/Peering useful; "Getting started in the peering mesh, establishing peers." Walks you through double-checking things, tuning, adding peers, etc. -Phil ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
Where and when did you get the dump files from ? Actually you should follow the same format located @ https://lists.nongnu.org/archive/html/sks-devel/2011-05/msg00029.html using your info. People will reply with questions or simply tell you they added you and to add them to your membership file. Regards, Scott Grayban /"\ \ / ASCII RIBBON XFIGHT BREAST CANCER / \ Christian Felsing said the following on 05/21/2011 02:48 AM: > Hello Scott, > > of course there are static IPv4/6 addresses and it is _not_ a dialin > connection. > > See http://key.ip6.li:11371/pks/lookup?op=stats for details regarding > SKS stats. > > key.ip6.li resolves to both IPv4 and IPv6 > > Christian > > Am 21.05.2011 11:30, schrieb Scott Grayban: > >> You need to have a static IP, no dialup and a decent net pipe. Having IPv6 >> is a plus as well. >> > ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
Hello Scott, of course there are static IPv4/6 addresses and it is _not_ a dialin connection. See http://key.ip6.li:11371/pks/lookup?op=stats for details regarding SKS stats. key.ip6.li resolves to both IPv4 and IPv6 Christian Am 21.05.2011 11:30, schrieb Scott Grayban: > You need to have a static IP, no dialup and a decent net pipe. Having IPv6 > is a plus as well. ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
Re: [Sks-devel] sks-network
You need to have a static IP, no dialup and a decent net pipe. Having IPv6 is a plus as well. On May 21, 2011 12:51 AM, "Christian Felsing" wrote: > Hello, > > I am interested to join the SKS network. What are the requirements to do > so besides installing an d running SKS ? > > best regards > Christian Felsing > (hostmaster ip6.li) > > ___ > Sks-devel mailing list > Sks-devel@nongnu.org > https://lists.nongnu.org/mailman/listinfo/sks-devel ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
[Sks-devel] sks-network
Hello, I am interested to join the SKS network. What are the requirements to do so besides installing an d running SKS ? best regards Christian Felsing (hostmaster ip6.li) ___ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel
