Subject: Re: NetBSD Security Advisory 2002-009: Multiple vulnerabilities in OpenSSL code
To: NetBSD Security Officer <firstname.lastname@example.org>
From: Olaf Seibert <email@example.com>
Date: 08/02/2002 17:07:53
On Fri 02 Aug 2002 at 09:57:28 -0400, NetBSD Security Officer wrote:
| [-- PGP output follows (current time: Fri Aug 2 17:04:41 2002) --]
| gpg: Warning: using insecure memory!
| gpg: Signature made Thu Aug 1 15:37:30 2002 CEST using RSA key ID F8376205
| gpg: BAD signature from "firstname.lastname@example.org"
| [-- End of PGP output --]
| [-- BEGIN PGP SIGNED MESSAGE --]
> NetBSD Security Advisory 2002-009
> Topic: Multiple vulnerabilities in OpenSSL code
This happens with gpg and pgp5 (both far from the latest version no
doubt). The other advisories sent out today also had bad signatures.
Earlier signed messages from email@example.com (with the same
key), such as "NetBSD Security Advisory 2002-006" were ok.
___ Olaf 'Rhialto' Seibert - rhialto@ -- Woe betide the one who feels
\X/ polderland.nl -- remorse without sin - Tom Poes, "Het boze oog", 4444.