[OTR-dev] .... dev response to question...

spamtester spamtester spamtesterspamtester at gmail.com
Wed Oct 1 13:52:50 EDT 2008


I have asked the question below on the users otr list. However, if the otr
keys of debian users / ubuntu users are at risk i thought i would / should /
will now forward this question on to the dev list so that if they are
vulnerable a tool can be maded to identify weak keys.


RE DEBIAN FALL OUT OF LIBSSL - Is it the case that otr uses openssl .... - i
see that i have a dsa key as my private key. So, then shouldn't it be so
that a tool to id the weak keys and blacklist them be published ?
This is long over due if this is the case.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cypherpunks.ca/pipermail/otr-dev/attachments/20081002/f4832acc/attachment.html>


More information about the OTR-dev mailing list