Jump to: navigation, search

Dev/apt-revoker

< Dev


Materials[edit]

UNFINISHED (barely started)

Materials - pieces of information and links that should be included in the draft.

keyserver discussion[edit]

reread this whole thread https://lists.nongnu.org/archive/html/sks-devel/2013-12/threads.html#00073

find and reread this discussion[edit]

https://lists.nongnu.org/archive/html/sks-devel/2013-12/msg00075.html

>> Good question. Probably, but some keyserver operators might view >> it as rude. Best to ask on address@hidden

> Will do.

separate DNS[edit]

aptrevoker.debian.org so this can be turned off / redirected in case keyservers cannot handle the load

/etc/apt-revoker.d[edit]

The code for downloading the revocation certificates should be configurable.

Download the signing key revocation certificates from:

  • version 1 - download from clearnet keyservers
  • version 2 - optionally download from onion keyservers
  • version 3 - optionally download from freenet / or something that implements a permanent takedown attack defense

Proposal[edit]

TODO:

  • Take any of the above bullet points one by one and convert those into a good wording that can be posted on the debian-devel mailing list.

Related[edit]



Impressum | Datenschutz | Haftungsausschluss

https | (forcing) onion
Share: Twitter | Facebook | Google+
This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation. Whonix (g+) is a licensee of the Open Invention Network. Unless otherwise noted above, the content of this page is copyrighted and licensed under the same Free (as in speech) license as Whonix itself.