[nycbug-talk] Hot Story: German Gov. intelligence agencies decrypt PGP, SSH

George Rosamond george at ceetonetechnology.com
Sun Jun 16 21:04:24 EDT 2013


nop:
> Have you rotated your keys and update the bits this year?
> 

After you learn not to top-post and derail the thread!

;`

(not used to talking to nope on talk at .. thought _nop only resided on IRC)

Valid question...

What are current protocols at peoples' work sites now?

I know the Google forces SSH key pair changes frequently (monthly or
even weekly?), which makes sense.  It's not like forcing regular passwd
changes and users recycling passwds or writing them down as a forced bad
practice.

I assume people at least use different keys for work and personal.. and
use passwds with SSH and GPG/PGP?

And that 2048-bit keys aren't a hassle to your CPU compared to 1024...

g




More information about the talk mailing list