[tor-dev] does renewing ed25519 signing key hurt if done to often?

nusenu nusenu at openmailbox.org
Sat Nov 28 13:02:53 UTC 2015


I'm wondering if it does any bad if ed25519 online keys are renewed
(to) often (i.e. on every ansible-playbook run and the admin runs it 3
times in a row to get it to complete on all hosts).

If key renewal causes all existing connections to die I'll try to
workaround the problem and make
tor --keygen
idempotent (replace the key only if its expiry changed).

More information about the tor-dev mailing list