jschauma, 29 days ago On the topic of "key rotation, it's not just for HTTPS", @hanno finds hundreds of DKIM keys apparently generated using the #Debian #OpenSSL predictable PRNG vulenrability from 2008 (CVE-2008-0166): https://16years.secvuln.info/ (And yes, #BIMI is still stupid.)
On the topic of "key rotation, it's not just for HTTPS", @hanno finds hundreds of DKIM keys apparently generated using the #Debian #OpenSSL predictable PRNG vulenrability from 2008 (CVE-2008-0166):
https://16years.secvuln.info/
(And yes, #BIMI is still stupid.)
isotopp, 29 days ago @jschauma The question is, for whom that is a problem. DKIM signing mails is mostly to get Google to accept the mail, and not for anything useful.
@jschauma
The question is, for whom that is a problem. DKIM signing mails is mostly to get Google to accept the mail, and not for anything useful.
Add comment