Archives
Archives
| From: | Kristian Fiskerstrand <k_f@g.o> | ||
|---|---|---|---|
| To: | gentoo-dev@l.g.o, "Hanno Böck" <hanno@g.o> | ||
| Subject: | Re: [gentoo-dev] Trustless Infrastructure | ||
| Date: | Mon, 02 Jul 2018 22:44:33 | ||
| Message-Id: | 3b30a8d3-6810-d9f2-3bb4-1be8e097716a@gentoo.org | ||
| In Reply to: | Re: [gentoo-dev] Trustless Infrastructure by "Hanno Böck" |
||
| 1 | On 07/02/2018 07:47 PM, Hanno Böck wrote: |
| 2 | > I don't want to say this is unworkable. But these are challenges and |
| 3 | > imho fixing them all is really, |
| 4 | |
| 5 | I'll say it, it is unworkable, you need a trusted party doing |
| 6 | verification of developers at point in time, then sign it with release |
| 7 | engineering keys for distribution to end-users. |
| 8 | |
| 9 | -- |
| 10 | Kristian Fiskerstrand |
| 11 | OpenPGP keyblock reachable at hkp://pool.sks-keyservers.net |
| 12 | fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3 |
| File name | MIME type |
|---|---|
| signature.asc | application/pgp-signature |