[Remops] Upgrade mixmaster network to the new keys

[Senshi-Admin]

-----BEGIN PGP SIGNED MESSAGE-----

Hi Remops!

On 30 Jul 2014 at 16:14, Jeremy Bentham Admin wrote:

> Now that we have a working mixmaster 3.0.2e binary for windows,
> it seems to me that the next appropriate step is to move as many
> remailers as possible to large keys. In fact, we should probably
> move _all_ remailers to large keys in order to provide the
> anonymity we promise as remailer operators.

I seem to have missed it, but where do I get this Windows binary
from? Will it be compatible with Reliable remailing software?


Now that there's a general agreement that mixmaster key size
should be upgraded, I was wondering why you still use only 1024 bit
for legacy RSA keys and/or DSS subkeys (which additionaly never expire).

I suggest using 4096 bit DSS subkey, and expiring and rotating it
together with the mixmaster key (the DSS master key doesn't need to
expire or use more bits, as it is not used for remailing).

If offered, the RSA key also should use more than 1024 bit, probably
2048, as I know from my own client that > 2048 bit is not supported by
every PGP client.


Just my thoughts.

Bye,
Senshi-Admin




-----BEGIN PGP SIGNATURE-----
Version: N/A

iQEVAwUBU9wrZ3wq7QUG6CVfAQGGdAf8DfV3eETbUUWXIzrZPsp1Sq2ChPF7TSEs
QbBECROQw+uRtHG6U4vysiG/LzBufnMNLAJllPIJlXa1NeUMijqNEjNsrIndV7It
F5UdSYyhAD/I1jy2+ZZGZxTYckU6DjqllDh7L+ipr6a7Serd6ujp+hiGHHkCevU4
A1hjwZtD9YvyRZdklg6/H3b2STXs2C2hrJpgWn4Q9w5ai/282fJoTVlwb8AWnxdX
R9Br0pb1Ji9wGGUOAI3x5J4E8ujrDP8Z9zGghtKtKzzoVD9tN8eDFp3P1D0t8uZe
wGYH3IjuEaV1izGufzbcsiOMs2X+MCn/dueSBukLvk8cIF5evcug9g==
=4XBh
-----END PGP SIGNATURE-----