Re: Reminder: Removing < 2048 bit keys from the Debian keyrings

To: Gunnar Wolf <gwolf@gwolf.org>
Cc: Henrique de Moraes Holschuh <hmh@debian.org>, debian-project@lists.debian.org
Subject: Re: Reminder: Removing < 2048 bit keys from the Debian keyrings
From: Brian Nelson <pyro@debian.org>
Date: Thu, 13 Nov 2014 14:27:59 -0500
Message-id: <[🔎] 874mu2uchs.fsf@bignachos.net>
In-reply-to: <[🔎] 20141113052056.GC87405@gwolf.org> (Gunnar Wolf's message of "Wed, 12 Nov 2014 23:20:56 -0600")
References: <20141108160920.GK17409@earth.li> <[🔎] 20141108192558.GA25390@bongo.bofh.it> <[🔎] CAD77+gSLp27kgBk6pkaMCe0XZZb8wWV59pjWRXuFFwb3xaXeLg@mail.gmail.com> <[🔎] 20141108211114.GB32023@khazad-dum.debian.net> <[🔎] 20141111203555.GA78074@gwolf.org> <[🔎] 87fvdot6kh.fsf@bignachos.net> <[🔎] 20141113052056.GC87405@gwolf.org>

Gunnar Wolf <gwolf@gwolf.org> writes:

> Brian Nelson dijo [Wed, Nov 12, 2014 at 05:09:02PM -0500]:
>> >> Wouldn't it make more sense to ask these people privately what is getting in
>> >> the way of a switch to a stronger key?
>> >
>> > They have been asked. Repeatedly.
>> 
>> I haven't been asked.  I've received a few reminders that I need a new
>> key with signatures, but I haven't been asked why I haven't submitted a
>> new key yet.
>
> Right. Precise definitions. You are right — Although we have been
> slowly but steadily insisting (at least since 2010, when we announced
> at DebConf10 we had removed the last 17 remaining PGPv3 keys) that
> 1024D keys were no longer considered long-term trusty and urged
> everybody to start updating to a >=2K key.
>
> But, as you are asking, you got me curious :) Why haven't you started
> migrating to a new key?

Well I have a new key but it doesn't have any signatures on it other
than my own, and I haven't encountered another developer in years to
have it signed.  I've been listed on
https://wiki.debian.org/Keysigning/Offers for years (two locations in
two different U.S. states, even) but have never been contacted for a
keysigning.

I'm not overly far from other developers--Boston is about a 2 hour drive
away--but with general busyness from having a family, I haven't found a
chance to try to meet people in Boston.  The boston-debian-soc mailing
list being down for years doesn't help, either.

It's not a very interesting story.  It's more about being inconvenient
than insurmountable.  I've just been hoping some opportunity would
present itself for an easy keysigning, but that hasn't happen yet.

-- 
Captain Logic is not steering this tugboat.

Reply to:

Follow-Ups:
- debian-boston-soc
  - From: Sam Hartman <hartmans@debian.org>
- Re: Reminder: Removing < 2048 bit keys from the Debian keyrings
  - From: Gunnar Wolf <gwolf@gwolf.org>

References:
- Re: Reminder: Removing < 2048 bit keys from the Debian keyrings
  - From: md@Linux.IT (Marco d'Itri)
- Re: Reminder: Removing < 2048 bit keys from the Debian keyrings
  - From: Richard Hartmann <richih.mailinglist@gmail.com>
- Re: Reminder: Removing < 2048 bit keys from the Debian keyrings
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: Reminder: Removing < 2048 bit keys from the Debian keyrings
  - From: Gunnar Wolf <gwolf@gwolf.org>
- Re: Reminder: Removing < 2048 bit keys from the Debian keyrings
  - From: Brian Nelson <pyro@debian.org>
- Re: Reminder: Removing < 2048 bit keys from the Debian keyrings
  - From: Gunnar Wolf <gwolf@gwolf.org>

Prev by Date: Re: Being part of a community and behaving
Next by Date: debian-boston-soc
Previous by thread: Re: Reminder: Removing < 2048 bit keys from the Debian keyrings
Next by thread: debian-boston-soc
Index(es):
- Date
- Thread