1 |
On 10/31/2016 01:34 AM, Michał Górny wrote: |
2 |
> The major difference between a developer key and an automated key is |
3 |
> that the latter is far easier target. I think we can trust Gentoo |
4 |
> developers to at least have their keys encrypted. I suppose most of |
5 |
> them don't 'git log -p' the commits their sign but well, it's still |
6 |
> harder to target a developer PC than a public server that most likely |
7 |
> keeps its signature key unencrypted (or with cleartext password). |
8 |
|
9 |
How about if we use subkeys that expire every 3 months or so. |
10 |
Realistically, won't that provide a reasonable level of security? That |
11 |
way, whoever is stealing our keys for the purposes of man-in-the-middle |
12 |
attacks will have to get a new copy of our key every 3 months. |
13 |
-- |
14 |
Thanks, |
15 |
Zac |