[pbs-devel] [PATCH proxmox-backup 09/13] paperkey: add short key ID to subject
Dietmar Maurer
dietmar at proxmox.com
Mon Nov 23 09:41:44 CET 2020
> I want to have the "full" fingerprint because we persist this in places
> where we can't (easily) update it, so it's more future-proof to keep the
> full value there. it also makes it possible to use the full value for
> the actual comparison done on manifest load/check (where we not only
> have to think about collisions for a single user, but potentially
> hundreds/thousands if they share a datastore!).
We have backup "owners", so users can only access backups they own.
But even with thousands of keys, collisions are very unlikely...
More information about the pbs-devel
mailing list