[OTR-dev] .... dev response to question...

Kjell Braden fnord at pentabarf.de
Wed Oct 1 14:51:14 EDT 2008


spamtester spamtester wrote:
> RE DEBIAN FALL OUT OF LIBSSL - Is it the case that otr uses openssl .... - i
> see that i have a dsa key as my private key. So, then shouldn't it be so
> that a tool to id the weak keys and blacklist them be published ?
> This is long over due if this is the case.

AFAIK, libotr uses libgcrypt for it's cryptographic functions and is
therefore not vulnerable.

Kjell

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 260 bytes
Desc: OpenPGP digital signature
URL: <http://lists.cypherpunks.ca/pipermail/otr-dev/attachments/20081001/60e79a0f/attachment.pgp>


More information about the OTR-dev mailing list