From: | Kristian Fiskerstrand <k_f@g.o> | ||
---|---|---|---|
To: | gentoo-dev@l.g.o, "Hanno Böck" <hanno@g.o> | ||
Subject: | Re: [gentoo-dev] Trustless Infrastructure | ||
Date: | Mon, 02 Jul 2018 22:44:33 | ||
Message-Id: | 3b30a8d3-6810-d9f2-3bb4-1be8e097716a@gentoo.org | ||
In Reply to: | Re: [gentoo-dev] Trustless Infrastructure by "Hanno Böck" |
1 | On 07/02/2018 07:47 PM, Hanno Böck wrote: |
2 | > I don't want to say this is unworkable. But these are challenges and |
3 | > imho fixing them all is really, |
4 | |
5 | I'll say it, it is unworkable, you need a trusted party doing |
6 | verification of developers at point in time, then sign it with release |
7 | engineering keys for distribution to end-users. |
8 | |
9 | -- |
10 | Kristian Fiskerstrand |
11 | OpenPGP keyblock reachable at hkp://pool.sks-keyservers.net |
12 | fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3 |
File name | MIME type |
---|---|
signature.asc | application/pgp-signature |