Archives
Archives
| From: | Kurt Lieber <klieber@g.o> | ||
|---|---|---|---|
| To: | Anthony Metcalf <anthony.metcalf@×××××××××××.cx> | ||
| Cc: | gentoo-security@l.g.o | ||
| Subject: | Re: [gentoo-security] Keys on a cd? | ||
| Date: | Mon, 08 Nov 2004 13:31:19 | ||
| Message-Id: | 20041108133055.GX10927@mail.lieber.org | ||
| In Reply to: | [gentoo-security] Keys on a cd? by Anthony Metcalf |
||
| 1 | On Mon, Nov 08, 2004 at 10:36:24AM +0000 or thereabouts, Anthony Metcalf wrote: |
| 2 | > As per this. Would it be sensible, once the gpg system is up and running in portage. To have a cd, obtainable from the gentoo store, with all the current public keys on it. |
| 3 | |
| 4 | Not the way we've implemented GPG signing -- each dev has their own ebuild |
| 5 | signing key. Given the churn rate in the dev community, a CD would be out |
| 6 | of date almost instantly. |
| 7 | |
| 8 | My $.02 and all that. |
| 9 | |
| 10 | --kurt |