Whew, RSA scare is a non-issue, it's some junk hardware module with broken keygen not scary new math or subtle flaws in major impls.
-
-
There should have either been no pre-announcemen at all, or it should have made the scope of who might be affected more clear.
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
so maybe my bullshit detector is better, but I haven't read that anywhere. but I can see that people may read that.
-
Search twitter for "rsa keys" find stuff like:https://twitter.com/HNTweets/status/919842861834784769 …
-
okay, but that's a HN headline that misrepresented the source tweet and got removed from HN pretty quickly
-
tweet from
@dangoodin001 is accurate, as he refers to "millions of keys" (which kinda makes it obvious that it's not "all keys") -
It could easily have been a large class of keys based on some mathematical property (like being N mod M, or relationship btwn the 2 primes).
End of conversation
New conversation -
-
-
It sounded to me like it might've been an OpenSSL keygen bug, from "millions". Alas, no. Much smaller.
-
No, nobody misses a chance to shit on OpenSSL. ;-) If it were an OpenSSL bug they would have said "new critical vuln in OpenSSL!!!111"
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.