|
|
|
|
|
|
by exabrial
2548 days ago
|
|
|
I discovered a similar bug awhile back in an important piece of software and sent it on to get fixed. Essentially the gpg implementation always assumed the signatures on the key would be rsa, so merely signing someone else's key with an ecdsa key would block them from using said thing. I had discovered it by accidently doing it to myself |
|
|