Re: gpg key validity question

To: debian mentors <debian-mentors@lists.debian.org>
Subject: Re: gpg key validity question
From: Henrique de Moraes Holschuh <hmh@debian.org>
Date: Thu, 25 Apr 2002 14:08:22 -0300
Message-id: <[🔎] 20020425140822.B8765@khazad-dum>
In-reply-to: <[🔎] 20020425140420.GI15122@localhost>; from christophe.barbe.ml@online.fr on Thu, Apr 25, 2002 at 10:04:20AM -0400
References: <[🔎] 20020425140420.GI15122@localhost>

On Thu, 25 Apr 2002, christophe barbé wrote:
> But the key makes no references to his name.
[...]
> Should I sign his key ?

No. Request that he adds an UID to his key with his name as it appears on
his documents (the name that he would have in a international travel pass,
for example), and sign THAT UID (and any others you have verified to be
completely true).

The NM process is not a 'internet ressort club' :) That means using an ID
that is made up of a real name, that can be used to track down real people
in real life, and a verified email address to reach that people in internet
life...

Since the gpg signature IS our ID verification, we should be very strict on
that. I sure hope the DAM would reject an applicant that has a nickname for
his Debian signed UID...

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh

-- 
To UNSUBSCRIBE, email to debian-mentors-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: gpg key validity question
  - From: Jason Lunz <lunz-mlist@falooley.org>

References:
- gpg key validity question
  - From: christophe barbé <christophe.barbe.ml@online.fr>

Prev by Date: Re: gpg key validity question
Next by Date: Re: Maintaner Wannabe - sarg package adoption?
Previous by thread: Re: gpg key validity question
Next by thread: Re: gpg key validity question
Index(es):
- Date
- Thread