Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
Privacy Encryption Security

GnuPG Short ID Collision Has Occurred. 110

Posted by Unknown Lamer
from the 32-bits-ought-be-enough-for-anyone dept.
kfogel writes "Asheesh Laroia now has two GPG different keys with the same short ID (70096AD1) circulating on keyservers. One of them is an older 1024-bit DSA key, the other is a newer 4096-bit RSA key. Oops. Asheesh argues that GPG's short IDs are too short to be the default anymore — collisions are too easy to create: he did it on purpose and openly, but others could do it on purpose and secretly. More discussion (and a patch by dkg) are in this bug report."
This discussion has been archived. No new comments can be posted.

GnuPG Short ID Collision Has Occurred.

Comments Filter:

Real Users find the one combination of bizarre input values that shuts down the system for days.

Working...