14 Bře
2019
14 Bře
'19
21:11
Hello Knot DNS users.
Our deb package signing key may have been compromised and has been
revoked. Open Build Service repositories are not affected.
The affected systems (https://deb.knot-dns.cz/knot-latest and
https://deb.knot-dns.cz/knot) now contain a new Debian repository. The
packages were re-built and re-signed with a new GPG key
rsa4096/0x8A0EFB02C84B1E9B.
We thank to security researcher calling himself "p3n73st3r" who notified
us earlier today.
Regards
Your Knot DNS team
14 Bře
14 Bře
22:17
On Thu 2019-03-14 21:11:13 +0100, Vladimír Čunát wrote:
Our deb package signing key may have been compromised
and has been
revoked. Open Build Service repositories are not affected.
Ugh, i'm sorry to hear this. Thank you for the public revocation
notice and key rotation.
Would you mind identifying by fingerprint which OpenPGP certificate was
revoked? I don't think i have a copy of it, but i want to ensure that
no systems i rely on are using it anywhere.
--dkg
22:31
On 3/14/19 10:17 PM, Daniel Kahn Gillmor wrote:
Would you mind identifying by fingerprint which
OpenPGP certificate was
revoked?
rsa4096/0xAC0E47584A7A714D
The information is also on https://www.knot-dns.cz/download/
2081
days inactive
2081
days old
2 comments
2 participants
participants (2)
-
Daniel Kahn Gillmor -
Vladimír Čunát