1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA256 |
3 |
|
4 |
On 02/12/2013 10:14 PM, William Hubbs wrote: |
5 |
> If you have any questions on this, please feel free to let us |
6 |
> know. |
7 |
What is the rotation strategy for (near) outdated keys? |
8 |
Alter the key or create a new one? Sign the new with the old one? |
9 |
|
10 |
IMHO the answer to these questions is not obvious nor given by (our) |
11 |
docu [1]. |
12 |
|
13 |
Maybe, add "keep ldap id/fingerprint synchronized" there, too. |
14 |
|
15 |
|
16 |
> [1] |
17 |
> http://devmanual.gentoo.org/general-concepts/manifest/index.html |
18 |
|
19 |
- -- |
20 |
Michael Weber |
21 |
Gentoo Developer |
22 |
web: https://xmw.de/ |
23 |
mailto: Michael Weber <xmw@g.o> |
24 |
-----BEGIN PGP SIGNATURE----- |
25 |
Version: GnuPG v2.0.19 (GNU/Linux) |
26 |
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ |
27 |
|
28 |
iF4EAREIAAYFAlEazGMACgkQknrdDGLu8JBXygD8CalxwI4y7kxbqYwyXcyohtbW |
29 |
7xICGdFgIDA8jH7v4poA/RrtQTxwmmzE4g53Eyg8RBKxEIa0BmAZUaAMIyM9ntdq |
30 |
=XOfU |
31 |
-----END PGP SIGNATURE----- |