David Benfell | 29 Oct 03:23 2014

sks.disunitedstates.com downtime tomorrow (Wednesday)

Hi all,

We're doing some rearranging. My server will go down when the Internet
connection moves and come back up after it has been moved to where the
new connection is.

I have an all-day window from the ISP, so I really don't know when
this is happening with any precision at all. I also don't really know
how *long* this will take.

So just figure on tomorrow being ugly on my side. I'll send a note
when everything is situated.

--

-- 
David Benfell <benfell@...>
See https://parts-unknown.org/node/2 if you don't understand the
attachment.
Hi all,

We're doing some rearranging. My server will go down when the Internet
connection moves and come back up after it has been moved to where the
new connection is.

I have an all-day window from the ISP, so I really don't know when
this is happening with any precision at all. I also don't really know
how *long* this will take.

So just figure on tomorrow being ugly on my side. I'll send a note
(Continue reading)

David Benfell | 28 Oct 06:30 2014

RESOLVED: Re: Sks.disunitedstates.com down

On Tue, Oct 28, 2014 at 10:39:12AM +1300, William Demchick wrote:
> 
> The web service seems to be working as far as I can tell.
> 
So I finally got back to my server and looked at this.

Every morning at 4:15 am, I stop sks, and run a dump, then restart it.
All on a cron job.

It appears this time that the command to stop the database process
hung. Reissuing the command worked and it is now generating a dump. As
soon as it finishes, it should come back up.

--

-- 
David Benfell <benfell@...>
See https://parts-unknown.org/node/2 if you don't understand the
attachment.
On Tue, Oct 28, 2014 at 10:39:12AM +1300, William Demchick wrote:
> 
> The web service seems to be working as far as I can tell.
> 
So I finally got back to my server and looked at this.

Every morning at 4:15 am, I stop sks, and run a dump, then restart it.
All on a cron job.

It appears this time that the command to stop the database process
hung. Reissuing the command worked and it is now generating a dump. As
(Continue reading)

David Benfell | 27 Oct 21:19 2014

Sks.disunitedstates.com down


Hi all.

I'm on the road right now without ptoper Internet access, but apparently sks.disunitedstates.com has
gone down. I do have a script to try to fix the most common problems automatically that runs every hour.
Should this fail, I'll look into it when I get back on line.
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
Tobias Frei | 27 Oct 19:11 2014
Picon

Re: Not ok??

Oh, this irony. =P

Dear Ari,

my message was definitively not SPAM. I assume the large amount of links
made it seem like that. Maybe even the PGP signature, so I'm omitting that.

Best regards,
Tobias Frei

Am 27.10.2014 um 19:05 schrieb Ari Trachtenberg:
> My profound apologies but your e-mail has ended up in my
> Spam folder.  If this has occurred in error, please either e-mail
> me again with a distinctive, individual e-mail or else call me at
> my office number so that I may manually fix my spam filter.
> 
> Again, my apologies if you receive this e-mail in error - I have
> a rather aggressive spam filter due to the large number of
> e-mails that I receive.
> 
> Many thanks,
>    -Ari
> 
> ---
> 179424673
> 

Joel Brunenberg | 27 Oct 17:07 2014
Picon

Shutdown of pgp.jjim.de

Dear fellow keyserver operators,

I write you to inform you about the upcoming permenant shutdown of the
keyserver pgp.jjim.de

You probably have this server in your membership-file with a line
similar to this:

pgp.jjim.de 11370 # Joel Garske <admin@...> 0xAD25981C

IPs are 31.172.10.71, 2a01:a700:4816:104::1:3

The shutdown will take place 1.11.2014 during the day (CET) - The last
key dump that should be generated 31.10.2014 will not take place, all
previous key-dumps will be removed today or tomorrow. I have already
removed the download source from the bitbucket site.

Please de-peer the server and perhaps anyone could already take it out
of the rotation.

While I am very sorry to inform you that this step will take place, I am
even more sorry about the reasons. The jjim project hosting this
keyserver broke apart and the resources remaining at the moment are not
sufficient to look after this server. Because I object to having an
unmaintained server out there, I will take this step to shut it down.

Thank you all for peering and keeping the servers up and running . If I
can find the time, I will try to setup a keyserver again and hope I will
still be welcome then.

(Continue reading)

Horváth Dávid | 27 Oct 18:16 2014
Picon

Not ok??

Hi,

my server is available but the pool status page say that it is not OK.
What is the problem?

My status: 3753535
Pool's median: 3753549

Regards,
David

Tyler Schwend | 27 Oct 17:44 2014
Picon

keyserver.advmapper.com is down

I had a total meltdown of a system during a Debian upgrade and have
decided to switch hosts since the previous host wouldn't let me access
the disk image to retrieve my data. I am restoring services from backups
and will contact everyone in my restored peers file once that is completed.
Attachment (0xACC03E5B.asc): application/pgp-keys, 3933 bytes
Attachment (smime.p7s): application/pkcs7-signature, 5592 bytes
I had a total meltdown of a system during a Debian upgrade and have
decided to switch hosts since the previous host wouldn't let me access
the disk image to retrieve my data. I am restoring services from backups
and will contact everyone in my restored peers file once that is completed.
Hanno Böck | 26 Oct 10:17 2014
Picon

Potential problems running keyservers

Hi,

I'm currently having a closer look at the way pgp keyservers work
(details will be published at some point soon).

As it seems currently sks is the de-facto-default keyserver I thought
posting this here makes sense.

From my understanding the core principle of the pgp keyservers is that
they have an "add only"-policy, meaning you can never remove something,
just add further information to it (e.g. keys don't get removed, they
expire or are revoked).

This opens up a couple of problems and I wonder if they have been
discussed before and if there are any counterstrategies to them.

a) Someone could just flood the keyservers with random bogus keys. This
would basically fill up the hard drives of the keyservers.
b) Someone could grow a target's key by adding more and more
signatures. This would quickly make downloading the key from the
keyservers infeasible.
c) Someone could use keys, keyids, signatures or whatever to store
illegal data. (Basically this very same issue has already been
discussed in the context of bitcoin [1])

I don't really see any feasible counterstrategies to these issues.
Given the speed one can generate and upload material to key servers
(keys don't have to be valid to be accepted) I think all three scenarios
could easily happen.

(Continue reading)

Horváth Dávid | 20 Oct 11:19 2014
Picon

dacr.hu migrate

Hi,

I shut down the keyserver.dacr.hu that I migrate to version 1.1.4.

David

Brian Minton | 18 Oct 19:04 2014

Re: anyone interested in peering to a hockeypuck server?


The hockeypuck server will probably be going up and down a lot as I
work out the kinks.  One of the biggest is that the Raspberry Pi only
has 512MB of RAM, and the hockeypuck server tends to use more than
that. Even so, I'm having fun trying to get it working.
Brian Minton | 18 Oct 00:25 2014

anyone interested in peering to a hockeypuck server?


I've started up a hockeypuck server at the address
keyserver2.brian.minton.name
and I would be interested if anyone is interested in peering with me.
It's IPv6 only, with no port 80 or reverse proxy yet, but I plan to add
those things.  The server is running the latest hockeypuck code from
github on a Raspberry Pi.

Gmane