[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Implications of openssl bug on directory authorities



On Wed, Apr 9, 2014 at 5:49 AM, Roger Dingledine <arma@xxxxxxx> wrote:
 [...]
> Anybody have a plan 3?

Update the client and server code to explicitly blacklist the old
signing keys, and design a better key revocation mechanism for the
next time, in case there is a next time?

-- 
Nick
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev