[tor-dev] Implications of openssl bug on directory authorities

Nick Mathewson nickm at alum.mit.edu
Wed Apr 9 12:36:25 UTC 2014

On Wed, Apr 9, 2014 at 5:49 AM, Roger Dingledine <arma at mit.edu> wrote:
> Anybody have a plan 3?

Update the client and server code to explicitly blacklist the old
signing keys, and design a better key revocation mechanism for the
next time, in case there is a next time?


More information about the tor-dev mailing list