[guardian-dev] security issues of publishing private package signing key

Jonas Smedegaard dr at jones.dk
Tue Jan 14 17:51:05 EST 2014


Hi,

Does anyone here know what are the security implications of compiling 
Android using the demo keypair shipped with it - effectively releasing 
APKs signed with a key that has its private key "leaked"?


 - Jonas

-- 
 * Jonas Smedegaard - idealist & Internet-arkitekt
 * Tlf.: +45 40843136  Website: http://dr.jones.dk/

 [x] quote me freely  [ ] ask before reusing  [ ] keep private
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 966 bytes
Desc: signature
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20140114/9abf5d81/attachment.pgp>


More information about the Guardian-dev mailing list