Re: [Debian-NYC] GPG keysigning party on Friday's get-together

To: David Moreno <david@axiombox.com>
Cc: NYC Debian List <debiannyc@vireo.org>
Subject: Re: [Debian-NYC] GPG keysigning party on Friday's get-together
From: Micah Anderson <micah@riseup.net>
Date: Tue, 5 May 2009 17:14:55 -0400
Message-id: <[🔎] 20090505211455.GD25025@pond.riseup.net>
In-reply-to: <[🔎] 7CA86292-0B03-49F1-B902-FF93B59065C3@axiombox.com>
References: <[🔎] 7CA86292-0B03-49F1-B902-FF93B59065C3@axiombox.com>

Thanks David for coordinating this!

Just one note, or maybe two:

* David Moreno <david@axiombox.com> [2009-05-05 15:43-0400]:
> What to print on those pieces of paper? The output of `gpg -- 
> fingerprint <YOUR ID>` would be enough, like this:
> 
> cerdo ~ $ gpg --fingerprint C671257D
> pub   1024D/C671257D 2004-12-27 [expires: 2014-12-25]
>        Key fingerprint = 6EF6 C284 C95D 78F6 0B78  FFD3 981C 5FD7 C671  
> 257D
> uid                  David Moreno <david@axiombox.com>
> uid                  David Moreno Garza <damogar@gmail.com>
> uid                  David Moreno Garza (1984-08-08) <damog@damog.net>
> uid                  David Moreno Garza (Debian Developer) <damog@debian.org 
>  >
> sub   1024g/CE63FE80 2004-12-27 [expires: 2014-12-25]

You dont need to print out all of that, just the part that contains the
fingerprint is sufficient:

pub   1024D/C671257D 2004-12-27 [expires: 2014-12-25]
        Key fingerprint = 6EF6 C284 C95D 78F6 0B78  FFD3 981C 5FD7 C671 257D

> - When the time comes, all people participating will gather and start  
> exchanging pieces of paper and identities. After you have confirmed  
> the other person's identity matching the key's fingerprint, you will  
> keep his/her piece. of paper and proceed to the next person. When you  
> are back home, you will sign the keys for all the pieces of paper you  
> have in your pocket. On-site directions will be instructed, so don't  
> worry too much for this as of now.

It is preferable that you do not sign the key when you come home from
the bar, because you probably had some alcohol.

Wait until you can think again, and then do it. When you can think
again, please don't sign the keys without verifying the fingerprint that
you have against the piece of paper that you were given. 

> - The "signing-party" Debian package provides very interesting tools  
> for dealing with all of this. You will be interested on caff, that can  
> handle mass signings (for your pocket's pieces of paper). Again, if  
> you find yourself in need for help, let me know off-list.

In fact, caff will make the key signing even better. Its better to use
it because it will sign the key and then send an email to the user-id on
the key, encrypted to that user, with the signature. Then if that person
is able to receive and decrypt that email, they can take that signature
and upload it to a keyserver themselves. Some people do not like it if
you upload your signature on their key to a keyserver.

micah

Attachment: signature.asc
Description: Digital signature

_______________________________________________
DebianNYC mailing list
DebianNYC@vireo.org
http://lists.vireo.org/cgi-bin/mailman/listinfo/debiannyc

Reply to:

Follow-Ups:
- Re: [Debian-NYC] GPG keysigning party on Friday's get-together
  - From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
- Re: [Debian-NYC] GPG keysigning party on Friday's get-together
  - From: Jameson Rollins <jrollins@phys.columbia.edu>
- Re: [Debian-NYC] GPG keysigning party on Friday's get-together
  - From: "Benj. Mako Hill" <mako@atdot.cc>
- Re: [Debian-NYC] GPG keysigning party on Friday's get-together
  - From: Samat K Jain <lists@samat.org>

References:
- [Debian-NYC] GPG keysigning party on Friday's get-together
  - From: David Moreno <david@axiombox.com>

Prev by Date: [Debian-NYC] Vacation reply
Next by Date: Re: [Debian-NYC] GPG keysigning party on Friday's get-together
Previous by thread: [Debian-NYC] Vacation reply
Next by thread: Re: [Debian-NYC] GPG keysigning party on Friday's get-together
Index(es):
- Date
- Thread