Re: [Debconf-discuss] GPG keysigning?

To: debconf-discuss@lists.debconf.org
Subject: Re: [Debconf-discuss] GPG keysigning?
From: Moray Allan <moray@sermisy.org>
Date: Thu, 11 Jun 2009 19:32:35 +0200
Message-id: <[🔎] 1244741555.10632.34.camel@josquin.sermisy.org>
In-reply-to: <[🔎] 20090611064529.GC2659@debianrules.debiancolombia.org>
References: <[🔎] 20090611045653.GW11280@mykerinos.kheops.frmug.org> <[🔎] 20090611064529.GC2659@debianrules.debiancolombia.org>

Le jeudi 11 juin 2009 à 16:45 +1000, Aníbal Monsalve Salazar a écrit :
> I was thinking about accepting only keys that don't suffer from the
> recently discovered weaknesses.
> 
> What people think about that?

I'd go for the opposite view: if you've made a new key, that's a great
opportunity to strengthen the web of trust by not taking part in mass
keysignings.

If you must compete on raw number of weak signatures, use your old key
for that.  Get a few people who know you well to sign the new one.

-- 
Moray

Reply to:

Follow-Ups:
- Re: [Debconf-discuss] GPG keysigning?
  - From: martin f krafft <madduck@debconf.org>

References:
- [Debconf-discuss] GPG keysigning?
  - From: Christian Perrier <bubulle@debian.org>
- Re: [Debconf-discuss] GPG keysigning?
  - From: Aníbal Monsalve Salazar <anibal@v7w.com>

Prev by Date: Re: [Debconf-discuss] GPG keysigning?
Next by Date: Re: [Debconf-discuss] GPG keysigning?
Previous by thread: Re: [Debconf-discuss] GPG keysigning?
Next by thread: Re: [Debconf-discuss] GPG keysigning?
Index(es):
- Date
- Thread