| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA256 |
| 3 |
|
| 4 |
On 02/12/2013 10:14 PM, William Hubbs wrote: |
| 5 |
> If you have any questions on this, please feel free to let us |
| 6 |
> know. |
| 7 |
What is the rotation strategy for (near) outdated keys? |
| 8 |
Alter the key or create a new one? Sign the new with the old one? |
| 9 |
|
| 10 |
IMHO the answer to these questions is not obvious nor given by (our) |
| 11 |
docu [1]. |
| 12 |
|
| 13 |
Maybe, add "keep ldap id/fingerprint synchronized" there, too. |
| 14 |
|
| 15 |
|
| 16 |
> [1] |
| 17 |
> http://devmanual.gentoo.org/general-concepts/manifest/index.html |
| 18 |
|
| 19 |
- -- |
| 20 |
Michael Weber |
| 21 |
Gentoo Developer |
| 22 |
web: https://xmw.de/ |
| 23 |
mailto: Michael Weber <xmw@g.o> |
| 24 |
-----BEGIN PGP SIGNATURE----- |
| 25 |
Version: GnuPG v2.0.19 (GNU/Linux) |
| 26 |
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ |
| 27 |
|
| 28 |
iF4EAREIAAYFAlEazGMACgkQknrdDGLu8JBXygD8CalxwI4y7kxbqYwyXcyohtbW |
| 29 |
7xICGdFgIDA8jH7v4poA/RrtQTxwmmzE4g53Eyg8RBKxEIa0BmAZUaAMIyM9ntdq |
| 30 |
=XOfU |
| 31 |
-----END PGP SIGNATURE----- |
Archives