1 |
Signed-off-by: Mike Gilbert <floppym@g.o> |
2 |
--- |
3 |
|
4 |
v3: Fixed typo. |
5 |
Added link to keys.gentoo.org. |
6 |
Moved SKS upload advice to Recommendations section. |
7 |
Added Gentoo keyserver advice to Bare minimum requirements section. |
8 |
|
9 |
glep-0063.rst | 32 ++++++++++++++++++++++++-------- |
10 |
1 file changed, 24 insertions(+), 8 deletions(-) |
11 |
|
12 |
diff --git a/glep-0063.rst b/glep-0063.rst |
13 |
index 82541bd..6997044 100644 |
14 |
--- a/glep-0063.rst |
15 |
+++ b/glep-0063.rst |
16 |
@@ -7,10 +7,10 @@ Author: Robin H. Johnson <robbat2@g.o>, |
17 |
Michał Górny <mgorny@g.o> |
18 |
Type: Standards Track |
19 |
Status: Final |
20 |
-Version: 2.1 |
21 |
+Version: 2.2 |
22 |
Created: 2013-02-18 |
23 |
-Last-Modified: 2019-11-07 |
24 |
-Post-History: 2013-11-10, 2018-07-03, 2018-07-21, 2019-02-24 |
25 |
+Last-Modified: 2020-12-17 |
26 |
+Post-History: 2013-11-10, 2018-07-03, 2018-07-21, 2019-02-24, 2020-12-17 |
27 |
Content-Type: text/x-rst |
28 |
--- |
29 |
|
30 |
@@ -28,6 +28,9 @@ OpenPGP key management policies for the Gentoo Linux distribution. |
31 |
Changes |
32 |
======= |
33 |
|
34 |
+v2.2 |
35 |
+ Added information about the Gentoo keyserver. |
36 |
+ |
37 |
v2.1 |
38 |
A requirement for an encryption key has been added, in order to extend |
39 |
the GLEP beyond commit signing and into use of OpenPGP for dev-to-dev |
40 |
@@ -114,7 +117,7 @@ Keys that do not conform to them can not be used to commit. |
41 |
|
42 |
6. UID using your ``@gentoo.org`` e-mail included in the key. |
43 |
|
44 |
-7. Upload your key to the SKS keyserver rotation before usage! |
45 |
+7. Keys must be uploaded to the Gentoo keyserver. |
46 |
|
47 |
Recommendations |
48 |
--------------- |
49 |
@@ -135,8 +138,13 @@ their primary key). |
50 |
|
51 |
5. Encrypted backup of your secret keys. |
52 |
|
53 |
+6. Upload to SKS or another public keyserver pool. |
54 |
+ |
55 |
+Gentoo Infrastructure |
56 |
+===================== |
57 |
+ |
58 |
Gentoo LDAP |
59 |
-=========== |
60 |
+----------- |
61 |
|
62 |
All Gentoo developers must list the complete fingerprint for their primary |
63 |
keys in the "``gpgfingerprint``" LDAP field. It must be exactly 40 hex digits, |
64 |
@@ -147,6 +155,14 @@ of the fingerprint field. In any place that presently displays |
65 |
the "``gpgkey``" field, the last 16 hex digits of the fingerprint should |
66 |
be displayed instead. |
67 |
|
68 |
+Gentoo Keyserver |
69 |
+---------------- |
70 |
+ |
71 |
+Gentoo infrastructure uses a keyserver that is isolated from the SKS pool. |
72 |
+This keyserver is restricted to accepting uploads from authorized Gentoo hosts. |
73 |
+Instructions for uploading keys to this server may be found at |
74 |
+https://keys.gentoo.org/. |
75 |
+ |
76 |
Backwards Compatibility |
77 |
======================= |
78 |
|
79 |
@@ -212,6 +228,6 @@ Copyright |
80 |
Copyright (c) 2013-2019 by Robin Hugh Johnson, Andreas K. Hüttel, |
81 |
Marissa Fischer, Michał Górny. |
82 |
|
83 |
-This work is licensed under the Creative Commons Attribution-ShareAlike 3.0 |
84 |
-Unported License. To view a copy of this license, visit |
85 |
-https://creativecommons.org/licenses/by-sa/3.0/. |
86 |
+This work is licensed under the Creative Commons Attribution-ShareAlike 4.0 |
87 |
+International License. To view a copy of this license, visit |
88 |
+https://creativecommons.org/licenses/by-sa/4.0/. |
89 |
-- |
90 |
2.30.0.rc0 |