From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Q384d-0000xU-Mj for garchives@archives.gentoo.org; Fri, 25 Mar 2011 14:33:11 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id A83981C058; Fri, 25 Mar 2011 14:32:48 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id B819C1C04B for ; Fri, 25 Mar 2011 14:30:49 +0000 (UTC) Received: from pomiocik.lan (87-205-64-126.adsl.inetia.pl [87.205.64.126]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: mgorny) by smtp.gentoo.org (Postfix) with ESMTPSA id 2F0021BC10C; Fri, 25 Mar 2011 14:30:42 +0000 (UTC) Date: Fri, 25 Mar 2011 15:30:31 +0100 From: =?UTF-8?B?TWljaGHFgiBHw7Nybnk=?= To: gentoo-dev@lists.gentoo.org Cc: dilfridge@gentoo.org Subject: Re: [gentoo-dev] Re: rejecting unsigned commits Message-ID: <20110325153031.4b00d583@pomiocik.lan> In-Reply-To: <201103250953.19757.dilfridge@gentoo.org> References: <20110325074824.TAf2c206.tv@veller.net> <201103250953.19757.dilfridge@gentoo.org> Organization: Gentoo X-Mailer: Claws Mail 3.7.8 (GTK+ 2.24.3; x86_64-pc-linux-gnu) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=PGP-SHA1; boundary="Sig_/EzcvK.JdCODDhssflnG5uCV"; protocol="application/pgp-signature" X-Archives-Salt: X-Archives-Hash: 731a03e0df1390f5dfb63a0855a8e667 --Sig_/EzcvK.JdCODDhssflnG5uCV Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On Fri, 25 Mar 2011 09:53:01 +0100 "Andreas K. Huettel" wrote: > Of course now we can add additional requirements: >=20 > * The key must have an userid that refers to an official Gentoo > e-mail address. E.g. dilfridge@gentoo.org I think this is pretty useless assuming we're already wanting to limit the amount of keys trusted to a specific list. > * The userid should have some specific "default string" in its > comment field, like "Gentoo manifest signing key". What's the point of this? I don't see a reason to enforce a dev to have a dedicated Manifest signing key, and even more I don't see a reason to add such comments to normal keys. --=20 Best regards, Micha=C5=82 G=C3=B3rny --Sig_/EzcvK.JdCODDhssflnG5uCV Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (GNU/Linux) iEYEARECAAYFAk2Mpw0ACgkQnGSe5QXeB7sr+wCg4xInBYEdOVipe2401cBR5qIA oHgAnR5zXORKyswPWhMWq9htKIo6PcrU =dYbf -----END PGP SIGNATURE----- --Sig_/EzcvK.JdCODDhssflnG5uCV--