gpg: failed to create temporary file '/var/lib/lurker/.#lk0x57de0100.hantslug.org.uk.26385': Permission denied
gpg: keyblock resource '/var/lib/lurker/pubring.gpg': Permission denied
gpg: Signature made Sun Nov 23 17:31:51 2008 GMT
gpg: using DSA key 2099B64CBF15490B
gpg: Can't check signature: No public key
Hi Stephen,
On Sat, Nov 22, 2008 at 01:41:45PM +0000, Stephen Davies wrote:
> There has been some nasty reports of domains being stollen and 'ransoms'
> demanded from people who owned a domain and managed it via GMAIL
>
> http://www.makeuseof.com/tag/breaking-gmail-security-flaw-more-domains-get-stollen/
>
> Give a full discussion.
> If you have a domain and also use gmail perhaps it is time you did a
> whois on it.
If you read what the actual exploit was, it was far more serious
than just "people who have domains":
http://www.gnucitizen.org/blog/google-gmail-e-mail-hijack-technique/
Basically allowed the stealing of selected email content.
And reportedly fixed since late 2007.
This sort of thing is a concern for all web services. The use of
plugins such as "NoScript" is recommended.
Cheers,
Andy
--
http://bitfolk.com/ -- No-nonsense VPS hosting
Encrypted mail welcome - keyid 0x604DE5DB
My words are my own and do not represent Jacqui Caren.
