Re: State of the debian keyring

To: Russ Allbery <rra@debian.org>
Cc: debian-project@lists.debian.org
Subject: Re: State of the debian keyring
From: Kurt Roeckx <kurt@roeckx.be>
Date: Tue, 25 Feb 2014 21:10:00 +0100
Message-id: <20140225201000.GA5299@roeckx.be>
In-reply-to: <87ios3auur.fsf@windlord.stanford.edu>
References: <20140222224148.GA2130@scru.org> <20140222234641.GA31478@roeckx.be> <20140223003506.GE30391@gwolf.org> <lec9ll$hlh$1@posted-at.bofh.it> <20140223081228.GA1049@master.debian.org> <20140223092346.GA3116@smurf.noris.de> <20140223150449.GD32426@gwolf.org> <21259.34853.289374.378737@chiark.greenend.org.uk> <20140225184724.GI40853@gwolf.org> <87ios3auur.fsf@windlord.stanford.edu>

On Tue, Feb 25, 2014 at 10:51:56AM -0800, Russ Allbery wrote:
> Gunnar Wolf <gwolf@gwolf.org> writes:
> > Ian Jackson dijo [Mon, Feb 24, 2014 at 05:57:57PM +0000]:
> 
> >> I think this is a bug.
> >> 
> >> It can increase security because it can make operations more
> >> convenient at the same level of security, and because people trade off
> >> convenience for security.
> >> 
> >> For example, it would be possible to have one key for email encryption
> >> and a different (more secure) key for package uploads.
> 
> > Debian tools don't care which key you use for email encryption.
> 
> Except for project DPL votes, no?

I think the keys are used for voting and the email interfance for
db.debian.org.  I'm not sure if we have any other services
checking the gpg signatures of emails.


Kurt

Reply to:

Follow-Ups:
- Re: State of the debian keyring
  - From: Luca Filipozzi <lfilipoz@debian.org>

References:
- Re: State of the debian keyring
  - From: Clint Adams <clint@debian.org>
- Re: State of the debian keyring
  - From: Kurt Roeckx <kurt@roeckx.be>
- Re: State of the debian keyring
  - From: Gunnar Wolf <gwolf@gwolf.org>
- Re: State of the debian keyring
  - From: Marco d'Itri <md@Linux.IT>
- Re: State of the debian keyring
  - From: Bart Martens <bartm@debian.org>
- Re: State of the debian keyring
  - From: Matthias Urlichs <smurf@smurf.noris.de>
- Re: State of the debian keyring
  - From: Gunnar Wolf <gwolf@gwolf.org>
- Re: State of the debian keyring
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>
- Re: State of the debian keyring
  - From: Gunnar Wolf <gwolf@gwolf.org>
- Re: State of the debian keyring
  - From: Russ Allbery <rra@debian.org>

Prev by Date: Re: GR proposal: code of conduct
Next by Date: Re: State of the debian keyring
Previous by thread: Re: State of the debian keyring
Next by thread: Re: State of the debian keyring
Index(es):
- Date
- Thread