[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Savannah-dev] [bug #4663] Sign security important announcements
|
From: |
nobody |
|
Subject: |
[Savannah-dev] [bug #4663] Sign security important announcements |
|
Date: |
Thu, 07 Aug 2003 18:00:17 -0400 |
|
User-agent: |
Mozilla/5.0 (X11; U; Linux i686) Gecko/20030714 Galeon/1.3.7 Debian/1.3.7.20030803-1 |
=================== BUG #4663: FULL BUG SNAPSHOT ===================
http://savannah.gnu.org/bugs/?func=detailbug&bug_id=4663&group_id=11
Submitted by: jas Project: Savannah
Submitted on: Thu 08/07/03 at 22:00
Category: Project Web site Severity: 5 - Average
Priority: None Bug Group: None
Resolution: None Assigned to: None
Status: Open Effort: 0.00
Summary: Sign security important announcements
Original Submission: Announcements such as the SSH host key change should be
changed, e.g. by a PGP signing key shared among the core administrators.
(If you want to get advanced, use one of the "key sharing" techniques so that
e.g. 3 out of 5 core members must participate to generate the signed
announcement. This reduces the chance that someone can attack one of the
administrators to gain the savannah announcement key. I'm not sure GnuPG
support this yet though.)
No Followups Have Been Posted
CC list is empty
No files currently attached
For detailed info, follow this link:
http://savannah.gnu.org/bugs/?func=detailbug&bug_id=4663&group_id=11
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Savannah-dev] [bug #4663] Sign security important announcements,
nobody <=