-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Toni Willberg wrote: > Owen Taylor wrote: >> I'm not sure the Wiki (or anywhere on the server) is the best >> place to put SSH keys, since if someone can DNS spoof the SSH >> server for you, they can presumably DNS spoof the web server as >> well :-) > > We could always sign the fingerprints with our pgp keys.. :) > > - Toni And publish md5sums thus: http://colliertech.org/~cjcollier/ssh/ http://colliertech.org/~cjcollier/tls/ IMHO, public means public. Cheers, C.J. - -- <cjcollier colliertech org> http://cjcollier.livejournal.com/tag/ +1 206 226 5809 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFD8jIXbS8rWWzCfqgRAq5JAJ9cBbMBHq8GmFf7Um6fDADft0SkcACfeK90 LY8IvGPMH4ExEhMnTDPqHC0= =J1E0 -----END PGP SIGNATURE-----
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature