Re: [Sks-devel] heads-up: another attack tool, using SKS as FS

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] heads-up: another attack tool, using SKS as FS

From:	Tom at FlowCrypt
Subject:	Re: [Sks-devel] heads-up: another attack tool, using SKS as FS
Date:	Sat, 14 Jul 2018 19:27:30 +0800

> How do you propose to validate the email address?

I'm using a library to parse the uid as email, name and a comment. For the email, I'm using a very, very long regex. Of the 5M keys available in SKS dumps, very few uids are miscategorized.

It may be hard to do with 100% accuracy, but it's unsurprisingly easy do well enough.

On Sat, Jul 14, 2018, 18:37 Robert J. Hansen <address@hidden> wrote:

> Then let's drop keys that don't contain a valid email address in the key id.

How do you propose to validate the email address?

(Hint: this is a surprisingly hard problem.)

_______________________________________________
Sks-devel mailing list
address@hidden
https://lists.nongnu.org/mailman/listinfo/sks-devel

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Sks-devel] heads-up: another attack tool, using SKS as FS, (continued)

Prev by Date: Re: [Sks-devel] heads-up: another attack tool, using SKS as FS
Next by Date: Re: [Sks-devel] heads-up: another attack tool, using SKS as FS
Previous by thread: Re: [Sks-devel] heads-up: another attack tool, using SKS as FS
Next by thread: Re: [Sks-devel] heads-up: another attack tool, using SKS as FS
Index(es):
- Date
- Thread