Re: archive rebuilds

To: debian-qa@lists.debian.org
Subject: Re: archive rebuilds
From: Niels Thykier <niels@thykier.net>
Date: Sun, 12 May 2013 14:27:47 +0200
Message-id: <[🔎] 518F8AC3.4020105@thykier.net>
In-reply-to: <[🔎] 518F890B.1000901@debian.org>
References: <[🔎] 20130512090113.GA17254@xanadu.blop.info> <[🔎] 518F6536.5020100@debian.org> <[🔎] 518F66EC.4040101@thykier.net> <[🔎] 518F890B.1000901@debian.org>

On 2013-05-12 14:20, Thomas Goirand wrote:
> On 05/12/2013 05:54 PM, Niels Thykier wrote:
>> You probably want to sign the key.
>>
>> ~Niels
> Can an ssh key be pgp signed? I didn't know.
> How do I do that?
> 
> Thomas
> 
> 

The key can be GPG signed like any other text file.  If you clear sign
it like David did, the file itself cannot be used directly (i.e. the
receiver have to extract the SSH key first).  Alternatively you could
have included a link to a detached signature.  Example:

  http://www.gplhost.com/ssh-pubkeys/zigo
  http://www.gplhost.com/ssh-pubkeys/zigo.asc

Either way would provide a way to verify that the key publish over HTTP
is from/approved by you.

~Niels

Reply to:

References:
- archive rebuilds
  - From: Lucas Nussbaum <lucas@debian.org>
- Re: archive rebuilds
  - From: Thomas Goirand <zigo@debian.org>
- Re: archive rebuilds
  - From: Niels Thykier <niels@thykier.net>
- Re: archive rebuilds
  - From: Thomas Goirand <zigo@debian.org>

Prev by Date: Re: archive rebuilds
Next by Date: Re: archive rebuilds
Previous by thread: Re: archive rebuilds
Next by thread: Re: archive rebuilds
Index(es):
- Date
- Thread