invent.kde.org key exchange
Sune Vuorela
nospam at vuorela.dk
Mon Dec 15 12:55:54 GMT 2025
On 2025-12-15, Tobias Leupold <tl at stonemx.de> wrote:
> as of recently, I get the following warning when communicating with invent.kde.org:
>
> $ git pull
> ** WARNING: connection is not using a post-quantum key exchange algorithm.
> ** This session may be vulnerable to "store now, decrypt later" attacks.
> ** The server may need to be upgraded. See https://openssh.com/pq.html
>
> Should we do something about this?
We should probably at some point, but luckily we don't really do secret things
on invent.
Also, https://kawaiicon.org/talks/quantum-cryptanalysis/ and
http://www.cs.auckland.ac.nz/~pgut001/pubs/bollocks.pdf
/Sune
More information about the kde-devel
mailing list