PGP: Migrating Away from SHA-1

Chris Acheson — Sat, 09 May 2009 18:52:32 +0000

The SHA-1 hash that PGP and GnuPG use by default is now looking even
less secure than previously thought. It’s recommended that users begin
using SHA-2, and generate new keys to replace their 1024-bit DSA keys
which are dependent on SHA-1:

http://www.debian-administration.org/users/dkg/weblog/48

If you understand the instructions in the link above, you should
probably follow them soon. If you don’t understand them, don’t worry
too much, as your keys and signatures are still mostly safe for now,
they’re just not future-proof. You’ll probably want to wait until new
versions of your software are released with updated default settings,
and then generate new keys.

I’ve generated a new key for myself, which I’ve signed with the old key
and will be using from now on.

NoScript Firefox plugin secretly disables Adblock Plus

Chris Acheson — Sat, 02 May 2009 01:22:39 +0000

Apparently Giorgio Maone, the developer of the NoScript extension for Firefox, has been indulging in some borderline-malware tactics in order to make sure the ads on his site don’t get blocked by the (excellent and popular) Adblock Plus extension. This is a shame, because NoScript is a genuinely useful tool, but I no longer feel comfortable using it.

Details are available at this post on the ABP blog.

ChrisAcheson.net » security

PGP: Migrating Away from SHA-1

NoScript Firefox plugin secretly disables Adblock Plus