Re: kernel.org status: establishing a PGP web of trust

From: Henrique de Moraes Holschuh
Date: Sun Oct 02 2011 - 14:24:35 EST

Next message: Jarkko Nikula: "Re: [PATCH 21/30] sound/soc/omap: limit to omap2plus"
Previous message: Ohad Ben-Cohen: "Re: [PATCH 10/30] ARM: omap/iommu: always provide iommu debug code"
In reply to: Rafael J. Wysocki: "Re: kernel.org status: establishing a PGP web of trust"
Next in thread: H. Peter Anvin: "Re: kernel.org status: establishing a PGP web of trust"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 02 Oct 2011, Rafael J. Wysocki wrote:
> Well, then I propose that people create two new key pairs instead of
> just one and take both of them to the KS for signing. Afterwards, one
> of them will be used for development and the other one's private key
> will be kept in a safe place (without any online access), so it can be
> used readily if the first pair is lost or compromised somehow.
>
> Perhaps the second pair should have a longer life time.

Maybe subkeys would be enough/better?

http://wiki.debian.org/subkeys

--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jarkko Nikula: "Re: [PATCH 21/30] sound/soc/omap: limit to omap2plus"
Previous message: Ohad Ben-Cohen: "Re: [PATCH 10/30] ARM: omap/iommu: always provide iommu debug code"
In reply to: Rafael J. Wysocki: "Re: kernel.org status: establishing a PGP web of trust"
Next in thread: H. Peter Anvin: "Re: kernel.org status: establishing a PGP web of trust"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]