Re: [Sks-devel] Dumps/importing & de-peering (WAS: Re: SKS apocalypse mi

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] Dumps/importing & de-peering (WAS: Re: SKS apocalypse mi

From:	Andrew Gallagher
Subject:	Re: [Sks-devel] Dumps/importing & de-peering (WAS: Re: SKS apocalypse mitigation)
Date:	Sat, 5 May 2018 13:30:03 +0100

> On 5 May 2018, at 11:31, brent s. <address@hidden> wrote:
> 
> it is SO IMPORTANT for both ends of the peering to have a relatively
> recent keyset. i don't see how we can "fix" this without entirely
> restructuring how HKP recon behaves, 

Yes. Perhaps it would be a good idea to systematise the dump/restore process so 
that instead of a human being following written instructions, a new peer of 
server A will attempt to a) probe server A to find the key difference b) if the 
difference is large, download a dump from some standard place c) reinitialise 
itself before trying again. 

Removing human error from such processes is A Good Thing in any case...

A

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Sks-devel] SKS apocalypse mitigation, (continued)

Prev by Date: Re: [Sks-devel] SKS apocalypse mitigation
Next by Date: Re: [Sks-devel] Dumps/importing & de-peering (WAS: Re: SKS apocalypse mitigation)
Previous by thread: [Sks-devel] Dumps/importing & de-peering (WAS: Re: SKS apocalypse mitigation)
Next by thread: Re: [Sks-devel] Dumps/importing & de-peering (WAS: Re: SKS apocalypse mitigation)
Index(es):
- Date
- Thread