[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bits from keyring-maint

On Wed, 15 Sep 2010, Felipe Sateler wrote:
> On 14/09/10 01:18, Gunnar Wolf wrote:
> > - Your new key should be signed by two or more other Debian Developers
> The NM and DM processes require only one signature. Why is it harder to
> replace a key than to become a DD?

Or rather, why the requirements for the first key any weaker than those
for DD key replacement?

Do we have a wiki page with all project crypto policies and expected
crypto material handling practices?  That could be a powerful tool to
increase awareness AND spot such inconsistencies...

  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh

Reply to: