> Kristian says in his interview the network was not designed to be resilient?
Kinda-sorta. The basic keyserver architecture was designed in the very
early 1990s, and it's really quite resilient against the sorts of
threats we saw in the 1990s.
But the threat actors and their capabilities have v
I'm not an active member of this community.
I represent a group of people. We recently set up a SKS Keyserver as a way
to contribute to the community.
We have had a lot of problems, but we don't have the knowledge and the
experience to contribute to the code or to submit pull requests.
I like the
Hehe... This "yakamo k" really does not like the key servers.
Gabor
--
The Meaning of Life of Brian
___
Sks-devel mailing list
Sks-devel@nongnu.org
https://lists.nongnu.org/mailman/listinfo/sks-devel
Ill admit that was my mistake to not submit the article to Kristian first as
promised, i genuinely forgot i had promised that, 2hrs of sleep yesterday and a
fulls day work i didn't re-read the email and catch that before publication.
For which i apologize, i am open for reasonable alterations to
I read the medium article - suffice it to say Mr. Mike seems to have a
reading comprehension problem, because in the article he insists the
keyserver network was intended to be resilient to attack (it is not, all of
us who have been in the network for even a short time know it is not, and
Kristian
I’ve been contributing to those discussions and helping come up with those
solutions your referencing, not beating on drums.. everyone here knows what the
issues are and everyone has been honest about em, this entire mailer’s history
is free to review and nobody has been hiding anything.. I just
> On Nov 15, 2018, at 6:25 PM, Mike wrote:
>
> So you are angry that i and a few others have reported several bugs, to a
> system that we would like to see continue to exist?
>
> If there is no dev team, then maybe its time to call it a day instead of
> pretending everything is ok?
>
You’d
So you are angry that i and a few others have reported several bugs, to a
system that we would like to see continue to exist?
It isn't an attack its a proof of concept to show that malicious people could
do damage, this is to get a point across to prove there's an issue in hope
someone fixes it
Wait, you have the skillset to code attacks and spew articles yet, no
capability for solutions? Smells like ignorance is your forte.
You seem to be under the impression that SKS has active developers working on
it, the reason the “dev team” is quiet as per your “articles” is there is no
friggin
And there goes the ignorance!
On Fri, 16 Nov 2018 09:08:02 +0800
Matthew Walster wrote:
> On Fri, 16 Nov 2018, 09:01 Mike
> > If i had the skill set needed to submit patches i would, but i don't.
> > But i do have a voice and that can be used to spur on change.
> >
>
>
>
> Good lord, Kristi
On Fri, 16 Nov 2018, 09:01 Mike If i had the skill set needed to submit patches i would, but i don't.
> But i do have a voice and that can be used to spur on change.
>
Good lord, Kristian, you have to deal with these people on a regular basis?
I haven't been part of the pool in quite a while n
If i had the skill set needed to submit patches i would, but i don't.
But i do have a voice and that can be used to spur on change.
I wrote the articles because there is a clear ignorance here that your
displaying really well, which is preventing things from getting fixed. Your
clearly angry and
On Fri, 16 Nov 2018, 08:36 Mike Your welcome to blame others for the servers issues.
>
> I and others have pointed out many times over the issues and no one has
> fixed them.
> Rather than blame me, take responsibility for the servers failings, for
> the developers failings.
>
You are more than w
Also some personal words - this is not meant to judge or criticize
anyone but rather to express my own feelings and opinions about SKS
within the last months.
- The fact that most (all?) vulnerabilities inside SKS are known for a
very long time and have not been fixed is deeply concerning - for
ex
Your welcome to blame others for the servers issues.
I and others have pointed out many times over the issues and no one has fixed
them.
Rather than blame me, take responsibility for the servers failings, for the
developers failings.
Decent and good developers take bugs and fix them and ensure
On Fri, 16 Nov 2018, 08:09 Mike This has Been Kristians approach to previous issues like this, and this
> has led to now. where the servers have not changed, that neglect now ruins
> it for everyone else and even puts the admins at risk of financial and
> legal damage, as you mentioned most cant a
This has Been Kristians approach to previous issues like this, and this has led
to now. where the servers have not changed, that neglect now ruins it for
everyone else and even puts the admins at risk of financial and legal damage,
as you mentioned most cant afford to take that risk.
yakamo
On
Moritz you did the right thing!
A lot of people consider the GDPR crappy only because it inconveniences them.
This law is actually extremely useful and greatly overdue.
On Fri, 16 Nov 2018 00:50:31 +0100
Moritz Wirth wrote:
> I asked to be allowed to share some more details, however the reques
Yeh I don’t agree with the stance “we haven’t seen a shutdown via legal
challenge yet so I’m happy to just hang and wait and see what happens...”.
Sorry but many people running keyservers aren’t businesses but rather private
individuals and can not afford to risk ANY possible legal action. Once
I asked to be allowed to share some more details, however the request
was to remove/prevent indexing of 2 keys stored on our keyservers -
including copies of ID's to verify the request as required by the
european data protection law. Since it is not possible to prevent the
indexing of data, I think
Actually a really simple copyright issue one of my friends had the missfortune
to encounter was using an image that was copyrighted on his website, he didnt
really understand how this works and ended up with a 5,000 euro fine that he
legally could not get out of.
Now apply that to the sks keyse
You seem to side step everytime. The keyserver software is broken, and isnt
being fixed, and is proving unstable.
You have gotten complaints from admins about it and some have shutdown their
servers because of it.
Why is nothing being done to fix these issues?
Each admin is legally at risk bot
Fabian, im sure you can tell that nothings going to change :(
But maybe these shutdowns in protest will provoke change, before its too late?
On Thu, 15 Nov 2018 23:23:43 +
"Fabian A. Santiago" wrote:
> Wow! I’d love to see that as well.
>
> I just saw Kristian’s post with his email exchang
On 11/16/18 12:23 AM, Fabian A. Santiago wrote:
> Wow! I’d love to see that as well.
>
> I just saw Kristian’s post with his email exchange. It’s a shame the
> situation is going down like this. I do hope a proper solution can be
> found so I and hopefully others can return to contributing to the
Wow! I’d love to see that as well.
I just saw Kristian’s post with his email exchange. It’s a shame the situation
is going down like this. I do hope a proper solution can be found so I and
hopefully others can return to contributing to the network, should the mode of
operation dictate and stay
On 11/15/18 10:13 PM, Ari Trachtenberg wrote:
> Where does it say that the network was meant to be "resilient" to attack?
>
>> On Nov 15, 2018, at 3:10 PM, Mike wrote:
>>
>> https://medium.com/@mdrahony/a-single-raspberry-pi-can-take-down-the-entire-sks-keyserver-network-and-its-maintainers-dont-
Hi,
On 18-11-15 23:56:07, Moritz Wirth wrote:
> keys.flanga.io will cease operation - we received a request to remove
> some keys and since we are unable to do this, we will shutdown all
> keyservers and erase all relevant databases immediately.
Would it be possible to share this request, omittin
Hello,
keys.flanga.io will cease operation - we received a request to remove
some keys and since we are unable to do this, we will shutdown all
keyservers and erase all relevant databases immediately.
Best Regards,
Moritz
signature.asc
Description: OpenPGP digital signature
_
Where does it say that the network was meant to be "resilient" to attack?
> On Nov 15, 2018, at 3:10 PM, Mike wrote:
>
> https://medium.com/@mdrahony/a-single-raspberry-pi-can-take-down-the-entire-sks-keyserver-network-and-its-maintainers-dont-fd829297d75e
>
> --
> me
>
>
https://medium.com/@mdrahony/a-single-raspberry-pi-can-take-down-the-entire-sks-keyserver-network-and-its-maintainers-dont-fd829297d75e
--
me
___
Sks-devel mailing list
Sks-devel@nongnu.org
https://lists.nongnu.org/mailman/listinfo/sks-devel
Hello,
Just to clarify my prior shutdown notice, I've decided the server(s):
keys.fspproductions.biz
keys2...
will remain shuttered indefinitely for now. I'll be following the progress in
development of sks or other alternative keyservers and if mitigations are put
in place to combat the recen
31 matches
Mail list logo