| 1 |
On Fri, 25 Mar 2011 09:53:01 +0100 |
| 2 |
"Andreas K. Huettel" <dilfridge@g.o> wrote: |
| 3 |
|
| 4 |
> Of course now we can add additional requirements: |
| 5 |
> |
| 6 |
> * The key must have an userid that refers to an official Gentoo |
| 7 |
> e-mail address. E.g. dilfridge@g.o |
| 8 |
|
| 9 |
I think this is pretty useless assuming we're already wanting |
| 10 |
to limit the amount of keys trusted to a specific list. |
| 11 |
|
| 12 |
> * The userid should have some specific "default string" in its |
| 13 |
> comment field, like "Gentoo manifest signing key". |
| 14 |
|
| 15 |
What's the point of this? I don't see a reason to enforce a dev to have |
| 16 |
a dedicated Manifest signing key, and even more I don't see a reason to |
| 17 |
add such comments to normal keys. |
| 18 |
|
| 19 |
-- |
| 20 |
Best regards, |
| 21 |
Michał Górny |
Archives