2023-12-23 23:04:31 |
Sintayew Gashaw |
description |
According to bug 1240681, the default signing key size for launchpad PPAs was changed from 1024-bit to 4096-bit keys. However, I just created the test ppa:
https://launchpad.net/~sbeattie/+archive/ubuntu/test-rsa-key-size
and launchpad is re-using an old 1024-bit key for this new ppa:
http://keyserver.ubuntu.com:11371/pks/lookup?fingerprint=on&op=index&search=0xED54D72DF6AFA040A048E29467D1BEEF813B16C8
If the keys are per launchpad user rather than per PPA, then there is no way for an existing launchpad user to create a PPA with gpg keys that meet modern key size recommendations, without creating a new launchpad ID entirely (problematic for other reasons). |
According to bug 1240681, the default signing key size for launchpad PPAs was changed from 1024-bit to 4096-bit keys. However, I just created the test ppa:
https://launchpad.net/~sbeattie/+archive/ubuntu/test-rsa-key-size
and launchpad is re-using an old 1024-bit key for this new ppa:
http://keyserver.ubuntu.com:11371/pks/lookup?fingerprint=on&op=index&search=0xED54D72DF6AFA040A048E29467D1BEEF813B16C8
If the keys are per launchpad user rather than per PPA, then there is no way for an existing launchpad user to create a PPA with gpg keys that meet modern key size recommendations, without creating a new launchpad ID entirely (problematic for other reasons). |
|