pgp.mit.edu

[Jonathan Steffan]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Mike McGrath wrote:
> Does anyone happen to have a contact at MIT that could find out who runs
> pgp.mit.edu and whats going on with it?  Over the last few months we've
> seen the site become less and less responsive and since its in the
> critical path to becoming a contributor (can't sign the cla without it)
> this is a real problem.

I'd really like to see it fixed, so if there is a contact let's get on it.

> What alternative options do we have besides running our own server? I've
> never actually run a key server like that, the security concerns alone
> worry me.  Anyone have any ideas?

I've been told the MIT system is unmaintained and broken[1].

Please start using subkeys.pgp.net

[1] Dec 25 23:33:28 <weasel> pgp.mit.edu is broken.  It mangles keys,
including but not limited to dropping subkeys, moving binding sigs
around, duplicating user ids, modifying signature subpackages,
calculating keyids wrong, rejecting keys with attribute UIDs.  Use
subkeys.pgp.net instead.

- --
Jonathan Steffan
daMaestro
GPG Fingerprint: 93A2 3E2F DC26 5570 3472 5B16 AD12 6CE7 0D86 AF59
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iD8DBQFHwukarRJs5w2Gr1kRAqzDAKCI+t6AoPaW9KJ4eqq4N2wToNc6WACbBG8k
UysCDAPWmIa0Ggs89SyBDM0=
=FPjP
-----END PGP SIGNATURE-----