Abagebengu basebenzise isici sephrothokholi ye-OpenPGP osekwaziwa iminyaka engaphezu kweyishumi.
Siyakutshela ukuthi liyini iphuzu nokuthi kungani bengakwazi ukulivala.
/Vula/
Izinkinga zenethiwekhi
Maphakathi noJuni, akwaziwa
Abagebengu bafake engozini izitifiketi zabanakekeli ababili bephrojekthi ye-GnuPG, uRobert Hansen noDaniel Gillmor. Ukulayisha isitifiketi esonakele kusuka kuseva kubangela ukuthi i-GnuPG yehluleke—isistimu ivele ibe yiqhwa. Kunesizathu sokukholelwa ukuthi abahlaseli ngeke bagcine lapho, futhi inani lezitifiketi ezifakwe ebucayini lizokhula kuphela. Okwamanje, inkinga ayikaziwa.
Ingqikithi yokuhlasela
Abaduni basebenzise ithuba lokuba sengozini kuphrothokholi ye-OpenPGP. Sekungamashumi eminyaka aziwa emphakathini. Ngisho naku-GitHub
Izinketho ezimbalwa ezivela kubhulogi yethu ku-Habré:
Ngokuvumelana nencazelo ye-OpenPGP, noma ubani angakwazi ukwengeza amasiginesha edijithali ezitifiketini ukuze aqinisekise umnikazi wawo. Ngaphezu kwalokho, inani eliphezulu lamasiginesha alilawulwa nganoma iyiphi indlela. Futhi lapha kuphakama inkinga - inethiwekhi ye-SKS ikuvumela ukuthi ubeke amasiginesha afinyelela ku-150 XNUMX esitifiketini esisodwa, kodwa i-GnuPG ayisekeli inombolo enjalo. Ngakho-ke, lapho kulayishwa isitifiketi, i-GnuPG (kanye nokunye ukufakwa kwe-OpenPGP) kuyaba yiqhwa.
Omunye wabasebenzisi
$ gpg --homedir=$PWD --recv C4BC2DDB38CCE96485EBE9C2F20691179038E5C6
gpg: key F20691179038E5C6: 4 duplicate signatures removed
gpg: key F20691179038E5C6: 54614 signatures not checked due to missing keys
gpg: key F20691179038E5C6: 4 signatures reordered
gpg: key F20691179038E5C6: public key "Daniel Kahn Gillmor <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg: imported: 1
$ ls -lh pubring.gpg
-rw-r--r-- 1 filippo staff 17M 2 Jul 16:30 pubring.gpg
Ukwenza izinto zibe zimbi kakhulu, amaseva okhiye we-OpenPGP awalususi ulwazi lwesitifiketi. Lokhu kwenziwa ukuze ukwazi ukulandelela uchungechunge lwazo zonke izenzo ngezitifiketi futhi uvimbele ukushintshwa kwazo. Ngakho-ke, akunakwenzeka ukuqeda izakhi ezithintekayo.
Empeleni, inethiwekhi ye-SKS “iseva yefayela” enkulu lapho noma ubani angabhala khona idatha. Ukukhombisa inkinga, ngonyaka owedlule umhlali we-GitHub
Kungani ubungozi bungavalwanga?
Sasingekho isizathu sokuvala ukuba sengozini. Ngaphambilini, yayingasetshenziselwa ukuhlasela kwama-hacker. Nakuba umphakathi we-IT
Ukuze sibe nobulungiswa, kubalulekile ukuqaphela ukuthi ngoJuni basalokhu
/Vula/
Ngokuqondene nesiphazamisi ohlelweni lwangempela, indlela yokuvumelanisa eyinkimbinkimbi iyasivimbela ukuthi singalungiswa. Inethiwekhi yeseva engukhiye ekuqaleni yabhalwa njengobufakazi bomqondo wethisisi ye-PhD ka-Yaron Minsky. Ngaphezu kwalokho, kwakhethwa ulimi oluthile, i-OCaml, lwalo msebenzi. Ngu
Kunoma ikuphi, i-GnuPG ayikholelwa ukuthi inethiwekhi izoke ilungiswe. Kokuthunyelwe ku-GitHub, abathuthukisi baze babhala ukuthi abancomi ukusebenza ne-SKS Keyserver. Empeleni, lesi ngesinye sezizathu eziyinhloko ezenza baqale ukushintshela kukhiye wesevisi omusha.openpgp.org. Singabuka kuphela ukuthuthukiswa okuqhubekayo kwemicimbi.
Izinto ezimbalwa ezivela kubhulogi yethu yebhizinisi:
Source: www.habr.com