-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

(NOTE:  This message is being sent to all three lists.)

There appears to be a potential serious flaw with GnuPG on OS X
concerning the generation of random numbers.  Here is what you should
do:

STOP using any key you generating on OS X via GPG immediately!  Later,
if this problem does not turn out to be just a misunderstanding, you
will need to REVOKE all such keys!

DO NOT encrypt or sign any messages from GPG on OS X.  This will
weakly protect the secret key and could lead to a potential cracking
of your key!  Again, I'll let you know if this turns out to just be a
scare or the real thing!

As of right now, you need to act as if this is for real, because it
very well may be.  We know of some potential fixes if this is real and
will make it top priority to get them out.

Thank you for helping us protect your security and that of all other
Mac GPG users.

(NOTE:  This message also appears on the Web site, signed with my
personal key because it was not generated with GPG under OS X and I've
done the signing from under OS 9.)

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBOznlLW7zd/e707ADEQKF8ACcCYMXi192ZstgQLI4C+2F1yyXk+oAoMT0
E92RjZPEq4j5oupz57jheOMc
=k5um
-----END PGP SIGNATURE-----