"200+ PGP keys (and counting) publicly broken"

Werner Koch wk at gnupg.org
Mon May 9 15:24:41 UTC 2016


On Mon,  9 May 2016 15:04, egnun at gmx.de said:

> "200+ PGP keys (and counting) publicly broken […]" via @nixcraft [1]
> http://phuctor.nosuchlabs.com/phuctored

Yeah, that are keys mangled by a broken keyservers.  Although they have
composite primes the private keys won't have them.  We analyzed them
last fall already.  A well known Linux hacker does now understand why he
often receives mails which he can't decrypt: Because those senders use a
mangled subkey of him.

See also a recent discussion on the gnupg-users ML.


Salam-Shalom,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.




More information about the Discussion mailing list