| 1 |
On 10/31/2016 01:34 AM, Michał Górny wrote: |
| 2 |
> The major difference between a developer key and an automated key is |
| 3 |
> that the latter is far easier target. I think we can trust Gentoo |
| 4 |
> developers to at least have their keys encrypted. I suppose most of |
| 5 |
> them don't 'git log -p' the commits their sign but well, it's still |
| 6 |
> harder to target a developer PC than a public server that most likely |
| 7 |
> keeps its signature key unencrypted (or with cleartext password). |
| 8 |
|
| 9 |
How about if we use subkeys that expire every 3 months or so. |
| 10 |
Realistically, won't that provide a reasonable level of security? That |
| 11 |
way, whoever is stealing our keys for the purposes of man-in-the-middle |
| 12 |
attacks will have to get a new copy of our key every 3 months. |
| 13 |
-- |
| 14 |
Thanks, |
| 15 |
Zac |
Archives