On Thu, 2014-03-27 at 12:49 +0100, Florian Weimer wrote: > On 03/27/2014 12:13 PM, Nikos Mavrogiannopoulos wrote: > > > For the purposes of the Crypto Policies change proposal [0], I think > > I've settled to the following three policy levels (inspired by the ENISA > > levels but with a rename of the good LEGACY level to DEFAULT). Any > > comments or suggestions are appreciated. > > Do you expect that the signature algorithm restrictions will apply to > the self-signatures as well? No, not really. I will make it explicit, but I don't think there are libraries that currently enforce restrictions on the self signatures. regards, Nikos -- security mailing list security@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/security
