Re: [T(A)ILS-dev] OpenPGP keys and policy

Borrar esta mensaxe

Responder a esta mensaxe
Autor: Marco A. Calamari
Data:  
Para: The T(A)ILS public development discussion list
Asunto: Re: [T(A)ILS-dev] OpenPGP keys and policy
On Thu, 2010-10-07 at 13:59 +0200, intrigeri wrote:
> Hi,
>
> I generated a new OpenPGP key pair with no encryption capability,
> dedicated to signing releases and other cryptographic keys needed by
> T(A)ILS developers.
>
> This allows us to sign releases with a secret key that is *not* stored
> on an online server managed by others than us, as opposed to our
> encrypted mailing-list key.
>
> See https://amnesia.boum.org/GnuPG_key/ for details.
>
> Comments welcome.


Hi,

may I suggest to maintain the trust chain signing the new
keys with the old one? Better comments inside the personality
about the key purpose would help too.

JM2C HTH. Marco

>
> Bye,

--
+--------------- http://www.winstonsmith.org ----------------+
| il Progetto Winston Smith: scolleghiamo il Grande Fratello |
| the Winston Smith Project: unplug the Big Brother          |
| Marco A. Calamari marcoc@???  www.marcoc.it   |
| DSS/DH:  8F3E 5BAE 906F B416 9242 1C10 8661 24A9 BFCE 822B |

+ PGP RSA: ED84 3839 6C4D 3FFE 389F 209E 3128 5698 ----------+