From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 13453 invoked by uid 1002); 30 Jul 2003 17:25:54 -0000 Mailing-List: contact gentoo-dev-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Received: (qmail 8747 invoked from network); 30 Jul 2003 17:25:54 -0000 From: Corey Shields To: gentoo-dev@gentoo.org In-Reply-To: <20030730094640.BF702CE0.fava@gentoo.org> References: <1059579304.13765.29.camel@localhost> <20030730154001.GA19809@zaphod.anachem.ruhr-uni-bochum.de> <20030730094640.BF702CE0.fava@gentoo.org> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-QFC0YHi1lQxSgKKmqZLn" Organization: Gentoo Linux Mirror Team Message-Id: <1059585878.1203.16.camel@localhost> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.3 Date: 30 Jul 2003 12:24:38 -0500 Subject: Re: [gentoo-dev] Keysigning at LWE X-Archives-Salt: 238c3237-2fe5-4b4a-bd5d-6f6e31890afc X-Archives-Hash: 2d18ab8759351d28dad4c46e7b29202f --=-QFC0YHi1lQxSgKKmqZLn Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Wed, 2003-07-30 at 11:46, Fred Van Andel wrote: > I think some people are getting too hung up on the identity thing. >=20 > Within the context of the gentoo community does it matter what the real n= ame of someone is? The only identity that ultimately matters is the identi= ty that has cvs access, and to a lesser extent the identity that appears on= irc. If someone decides to use a different identity online, that's cool. However, they shouldn't take offense to the rest of us signing each others keys. > To me a signature on a gentoo address means that I am verifying that this= identity is a gentoo developer, and I don't need to see government ID for = that. In fact official ID gets in the way. I know carpaski is a gentoo deve= loper, but I don't know that this particular individual who is presenting m= e with ID that says "Nicolas Jones" is in fact carpaski. He could be a com= pletely different "Nicolas Jones" and I have no way of telling them apart. Some of us use the gentoo.org address as a secondary UID on our primary gpg key. Therefore, I would rather know that who I am signing (and visa versa) is the identity of that person. Best way to do that is with a photo ID. If you have a solution for signing keys of people with identities that are not their own, maybe that should be used for those people. =20 > I realize this might piss off some and I am sorry, but this has been both= ering me for some time and I want to vent. No, not at all.. kind of expected some fallout when I posted the idea. There are a few of us who will be signing our keys when we meet at LWE, and so we just wanted to extend the invitation to anyone else in the gentoo community. Cheers! --=20 Corey Shields - Gentoo Linux Infrastructure Team http://www.gentoo.org/~cshields --=-QFC0YHi1lQxSgKKmqZLn Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQA/J/9Wpq/4o6MEFFMRAtQuAKCTl0YT8qBSIKBh+t6phw8ljo/EkwCfQ94x gaDkLnwqJGdDKEqVhMGduI0= =kbOa -----END PGP SIGNATURE----- --=-QFC0YHi1lQxSgKKmqZLn--