On Friday, September 26, the system hackers team discovered a misconfiguration in the wiki setup. The error, if discovered, would have enabled an unauthorised party to read protected pages and user configurations.

It was possible to read the encrypted password hashes of guest users. Registered Fellows, who log in using their Fellowship password were not affected by this. To all others we recommend changing their wiki password as a precaution.

Card howtos

Here you can find our howtos for setting up your computer to use your the Fellowship smart card.

Basic setup: Of course, you need GnuPG, either gpg or gpg2 will do. We recommend to install gpg-agent and scdaemon as well. Depending on your system, you may need to configure udev (or hotplug, its predecessor on older systems) to work with your card reader. If gpg --card-status (or gpg2 --card-status) shows your card’s contents on a freshly booted system, such configuration should not be necessary.

Using the card:

Outdated howtos:

Howtos for proprietary systems: