From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-dev+bounces-45695-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1QJmlF-0007Qt-JS
	for garchives@archives.gentoo.org; Tue, 10 May 2011 13:14:01 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id DB3611C059;
	Tue, 10 May 2011 13:13:49 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	by pigeon.gentoo.org (Postfix) with ESMTP id 00427E002B
	for <gentoo-dev@lists.gentoo.org>; Tue, 10 May 2011 13:13:11 +0000 (UTC)
Received: from [66.170.231.38] (unknown [66.170.231.38])
	(using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits))
	(No client certificate requested)
	(Authenticated sender: c1pher)
	by smtp.gentoo.org (Postfix) with ESMTPSA id 49C041BC01E
	for <gentoo-dev@lists.gentoo.org>; Tue, 10 May 2011 13:13:11 +0000 (UTC)
Message-ID: <4DC938E7.2090200@gentoo.org>
Date: Tue, 10 May 2011 09:08:55 -0400
From: Dane Smith <c1pher@gentoo.org>
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.17) Gecko/20110504 Lightning/1.0b3pre Thunderbird/3.1.10
Precedence: bulk
List-Post: <mailto:gentoo-dev@lists.gentoo.org>
List-Help: <mailto:gentoo-dev+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-dev+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-dev+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-dev.gentoo.org>
X-BeenThere: gentoo-dev@lists.gentoo.org
Reply-to: gentoo-dev@lists.gentoo.org
MIME-Version: 1.0
To: gentoo-dev@lists.gentoo.org
Subject: Re: [gentoo-dev] Re: rejecting unsigned commits
References: <AANLkTi=4o69ytUxAVpy-O31AWQv-5p4bEWD2466NWYGx@mail.gmail.com> <AANLkTimmECB=UhzsdADS4C7J+JvYBnYCTB+zxty3mr+X@mail.gmail.com> <20110510020849.GA5109@altair> <4DC8D8EF.9040602@gentoo.org>
In-Reply-To: <4DC8D8EF.9040602@gentoo.org>
X-Enigmail-Version: 1.1.2
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
X-Archives-Salt: 
X-Archives-Hash: ba7af6e5bc26f5ccc47745780c9b0062

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 05/10/11 02:19, "Pawe=C5=82 Hajdan, Jr." wrote:
> On 5/10/11 4:08 AM, Jim Ramsay wrote:
>> - Does this tree signing key have to be DSA?  Or is RSA okay too?
>=20
> No idea, I'd probably just try and see if signing works.
>=20
>> - If I have a key already, should I generate a new subkey just
>>   for manifest signing, make a whole new primary key, or just use
>>   the same key I use to sign my emails?
>=20
> See
> <http://archives.gentoo.org/gentoo-dev/msg_bdc24ba33036ef413e620dc94532=
e080.xml>,
> I think no separate key should be needed.
>=20

RSA2048 or so is > DSA in my opinion.
Just my 2 cents.

Regards,
- --=20
Dane Smith (c1pher)
Gentoo Linux Developer -- QA / Crypto / Sunrise / x86
RSA Key: http://pgp.mit.edu:11371/pks/lookup?search=3D0x0C2E1531&op=3Dind=
ex
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=3DT+gW
-----END PGP SIGNATURE-----