Re: [Sks-devel] old certificates

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] old certificates

From:	benfell
Subject:	Re: [Sks-devel] old certificates
Date:	Wed, 07 May 2014 00:46:13 -0700

James Cloos writes:

"KG" == Kiss Gabor (Bitman) <address@hidden> writes:


KG> I ask everybody to declare if they did not use compromised version
KG> of openssl since the start of validity period of certificate.

The cert currently used by keys.jhcloos.com, issued 2014/April/11, was
generated by gnutls and, where used with openssl, only used with 1.0.1g.

sks.disunitedstates.com is using a Class 2 StartSSL certificate, generatedsince heartbleed, used only with versions of openssl that have been patchedfor heartbleed.


--
David Benfell

See https://parts-unknown.org/node/2 if you do not understand theattachment.

pgp33xKP0Ib4C.pgp
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Sks-devel] old certificates, James Cloos, 2014/05/07
- Re: [Sks-devel] old certificates, benfell <=
- Re: [Sks-devel] old certificates, Jeremy T. Bouse, 2014/05/07
- Re: [Sks-devel] old certificates, Todd Lyons, 2014/05/07

Prev by Date: Re: [Sks-devel] old certificates
Next by Date: Re: [Sks-devel] Dirmngr now supports hkps
Previous by thread: Re: [Sks-devel] old certificates
Next by thread: Re: [Sks-devel] old certificates
Index(es):
- Date
- Thread