SoylentNews is people
SoylentNews
First things first: The Missing Link!
Dmitry Bogatov (maintainer for several Debian packages and a TOR exit node) was arrested in Moscow, accused of endorsing violence and mayhem. The Debian project reacted by - besides giving their moral support - revoking access rights based on his private key as a precaution, in case the key gets compromised.
This discussion has been archived.
No new comments can be posted.
Dmitry Bogatov (Debian Package and TOR Exit Node Maintainer) in Custody
|
Log In/Create an Account
| Top
| 33 comments
| Search Discussion
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
Just because the message may never be received does not mean it is
not worth sending.
(Score: 5, Interesting) by VLM on Wednesday April 19 2017, @03:12PM (1 child)
can he be considered compromised against his will?
Debian has always been a security theater OS where the devs "need" 4096 bit keys despite source code coming from shar archives on usenet or rando ftp sites (sure most is guithub/gitlab now a days, but ...). Also they let in systemd, for goodness sakes. Default configs don't look like secure secure shell (or didn't recently)
https://stribika.github.io/2015/01/04/secure-secure-shell.html [github.io]
Its hard to decide is spending time in prison would make security theater apply or not.
(Score: 2) by butthurt on Thursday April 20 2017, @08:53AM
> source code coming from shar archives on usenet or rando ftp sites
If it's been read by someone competent in the language, that can mitigate the fact that it changed hands in an insecure way. Not to say that the Debian maintainers necessarily do such auditing.