Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror

Comment: Re:Here come the certificate flaw deniers....... (Score 1) 80

by Alioth (#48564169) Attached to: New Destover Malware Signed By Stolen Sony Certificate

Signing certificates are normally encrypted. Stealing the file will do no good unless you know the decryption passphrase. For example, to get a package into our local debian repository such that it can install/upgrade in our production environment, you'd not only need the gpg signing keys, but the 60+ character passphrase (which is NOT written down) to go with it.

System going down in 5 minutes.

Working...