monotone-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Monotone-devel] Re: Rosterify and certificate keys

From: Richard Levitte - VMS Whacker
Subject: Re: [Monotone-devel] Re: Rosterify and certificate keys
Date: Tue, 11 Apr 2006 10:46:45 +0200 (CEST) 
In message <address@hidden> on Tue, 11 Apr 2006 10:14:48 +0200, Wim Oudshoorn 
<address@hidden> said:

woudshoo> For me the ideal situation would be that during the
woudshoo> conversion all the certificates that contain a string of 40
woudshoo> hex digits that equal an existing hash should be replaced
woudshoo> with the new, post upgrading hash.

Hmm, interesting thought...

woudshoo> Also, if the private key is know, it should try to preserve
woudshoo> the private key, otherwise fallback to a default private key
woudshoo> when resigning the certificates.

You know, if someone else rebuilds a database, I would be quite
worried if anything was signed with my key.  To me, that's a breach of
security, and would lead to an immediate revokation of my key, if that
was at all possible.

Cheers,
Richard

-----
Please consider sponsoring my work on free software.
See http://www.free.lp.se/sponsoring.html for details.

-- 
Richard Levitte                         address@hidden
                                        http://richard.levitte.org/

"When I became a man I put away childish things, including
 the fear of childishness and the desire to be very grown up."
                                                -- C.S. Lewis
reply via email to
[Prev in Thread] Current Thread [Next in Thread]