|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[discuss] Re: MDKSA-2003:109 - Updated gnupg packages fix vulnerability with ElGamal signing keys
From: Dick Gevers (dvgevers
xs4all.nl)
Date: Fri Nov 28 2003 - 12:44:53 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 28 Nov 2003 17:40:14 -0000, Mandrake Linux Security Team
<securitylinux-mandrake.com> wrote about MDKSA-2003:109 - Updated gnupg
packages fix vulnerability with ElGamal signing keys:
> Please *take immediate action and revoke your ElGamal signing keys*.
> Furthermore you should take whatever measures necessary to limit the
> damage done for signed or encrypted documents using that key."
Please note the revocation of such `G` type keys should be done by means of
the previous version, i.e. *before* installing the new package.
=Dick Gevers=
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
Comment: Encryption is an envelope - the contents are private.
iD8DBQE/x5eiwC/zk+cxEdMRAoosAJoCrNTMeia5OQjd/fdvgpxGoeLsGwCgmT++
eI9D5BfeEaSWD7gYt4dPCA0=
=/x5E
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]