[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Sks-devel] Fwd: Unauthorized server connections
|
From: |
John Clizbe |
|
Subject: |
[Sks-devel] Fwd: Unauthorized server connections |
|
Date: |
Thu, 05 Apr 2012 22:23:22 -0500 |
|
User-agent: |
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.20pre) Gecko/20110606 Mnenhy/0.8.5 SeaMonkey/2.0.15pre |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1,SHA256
Anyone else seeing this?
- -------- Original Message --------
Subject: Unauthorized server connections
Date: Thu, 05 Apr 2012 22:11:58 -0500
From: John Clizbe <address@hidden>
To: address@hidden, address@hidden
There appears to be an SKS keyserver (https://code.google.com/p/sks-keyserver/)
operating on pubdmz01.phx.mozilla.com [63.245.216.226].
I operate two SKS servers, keyserver.gingerbear.net and sks.keyservers.net. Both
have been receiving reconciliation request from this server since
2012-03-20:13:34:42. A quick check showed that it is in fact an SKS server as it
performed the recon process correctly. However, it was not able to exchange
keys.
There are two problems with this:
1) The server is mis-configured. The recon port is 11370. Port 11371
must also be open in order to exchange keys -- it is not.
2) This is in violation of the SKS server community's standards. No one is to
add a server to her own server's membership file without first contacting the
operator of the other server and receiving permission.
See: https://code.google.com/p/sks-keyserver/wiki/Peering
I have no issue with adding this server to my membership files, but first the
port misconfiguration must be corrected, as well as a proper membership request
furnishing the server's information and administrative contact being sent
preferably to the sks-devel mailing list.
Thank you
- --
John P. Clizbe Inet: John (a) Gingerbear DAWT net
John ( @ ) Enigmail DAWT net or: John (@) Keyservers DAWT net
FSF Assoc #995 / FSFE Fellow #1797 hkp://keyserver.gingerbear.net or
mailto:address@hidden
Cowboy Haiku -- Reflections on Rodeo
So many Cowboys. / Round Wrangler butts drive me nuts. / Never enough rope.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12-git-509fe4ce-2012-01-31 (Windows XP)
Comment: When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
Comment: Be part of the £7 ECHELON -- Use Strong Encryption.
Comment: It's YOUR right - for the time being.
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/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=
=kpdI
-----END PGP SIGNATURE-----
- [Sks-devel] Fwd: Unauthorized server connections,
John Clizbe <=