[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Time to resurrect multi-key signatures in RPM?

From: "Bill Crawford" <billcrawford1970 gmail com>
To: "Development discussions related to Fedora" <fedora-devel-list redhat com>
Subject: Re: Time to resurrect multi-key signatures in RPM?
Date: Mon, 1 Sep 2008 10:40:33 +0100

On 30/08/2008, Bojan Smojver <bojan rexursive com> wrote:

> Just for completeness, yum could alternatively accept say 5 keys from the
> pool
> (but no Fedora key), so that any compromise of the central key does not
> cause
> the current "change the Fedora key" hoopla. Simply resign by others and
> continue.

What might be good, is only signing packages with one or two keys, but
only allowing those keys' public parts to be updated in rpm database
(or wherever) if signed by a much larger number of keys, which would
be owned by some trusted people from the fedora project. Then
automated rollover could be done by simply providing a new "keyring"
in updates.

Follow-Ups:
- Re: Time to resurrect multi-key signatures in RPM?
  - From: Casimiro de Almeida Barreto
- Re: Time to resurrect multi-key signatures in RPM?
  - From: Bojan Smojver

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]