gpg: failed to create temporary file '/var/lib/lurker/.#lk0x57dc8100.hantslug.org.uk.24403': Permission denied
gpg: keyblock resource '/var/lib/lurker/pubring.gpg': Permission denied
gpg: Signature made Wed May 14 17:19:25 2008 BST
gpg: using DSA key 20ACB3BE515C238D
gpg: Can't check signature: No public key
On Wed, May 14, 2008 at 03:30:28PM +0100, Damian Brasher wrote:
> Steve Kemp wrote:
>
> > The pain of this one is that a security update will only prevent you
> > from creating weak keys in the future - it doesn't protect you in any
> > way from any keys you've created previously which are now trivially
> > crackable ..
>
> However the end result is that Open Source model has allowed this error to
> be spotted and fixed within the day.
The problem was known about in January -- that's when the CVE
number was allocated. It wasn't discovered and fixed in the space of a
day.
Hugo.
--
=== Hugo Mills: hugo@... carfax.org.uk | darksatanic.net | lug.org.uk ===
PGP key: 515C238D from wwwkeys.eu.pgp.net or http://www.carfax.org.uk
--- Happiness is mandatory. Are you happy? ---
