From: Mike Markley <mike@ma...> - 2008-05-16 14:32:04
On Fri, May 16, 2008 at 07:42:14AM +1000, Daniel Black <daniel.subs@...> wrote:
> i'm hoping people have picked this up however just fyi, dkim-genkey uses
> openssl to generate DKIM keys (rsa).
Indeed, and thanks for the notice. Scott Kitterman (who maintains the
Ubuntu package) mentioned this to me (as the Debian maintainer), and I'm
working on an upload that will draw attention to this and urge
recreation of any compromised keys found in the configuration.
In the meantime, concerned Debian users certainly don't need to wait on
me to recreate their keys :).
Worth noting as well is the fact that this also applies to dk-milter's
gentxt.csh (or to any keys generated for either with Debian's OpenSSL).
Mike Markley <mike@...>
At 07:31 16-05-2008, Mike Markley wrote:
>In the meantime, concerned Debian users certainly don't need to wait on
>me to recreate their keys :).
A different selector should be used for DK/DKIM signing when the keys
Get latest updates about Open Source Projects, Conferences and News.