From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id EFF9D13877A for ; Tue, 1 Jul 2014 21:27:17 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id CCEECE0919; Tue, 1 Jul 2014 21:27:11 +0000 (UTC) Received: from ore.jhcloos.com (ore.jhcloos.com [198.147.23.85]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id D6AD5E0881 for ; Tue, 1 Jul 2014 21:27:10 +0000 (UTC) Received: by ore.jhcloos.com (Postfix, from userid 10) id C57821E495; Tue, 1 Jul 2014 21:27:08 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jhcloos.com; s=ore14; t=1404250028; bh=XX77Us1cRFcv4i9EZTDEUEchjfNJfUOiJLFc0mSRqwU=; h=From:To:Subject:In-Reply-To:References:Date:From; b=hSxJYo+2CXLuVOf746tjWXlwGBcctFHAiwiHiLY6JzgepaFlSPDV5ut5nMTc1yZt9 h5CxfrXBSFKYzO1azcUiJzvTgh5yDkAAzedFw1qNQi5SixVZO+arDXxWJYC3oVUdAT X3Xm1ZELu4yDm3VfC4ptOwx/c2PeG5YxlnaJlxj0= Received: by carbon.jhcloos.org (Postfix, from userid 500) id 62F8B6001E; Tue, 1 Jul 2014 21:21:49 +0000 (UTC) From: James Cloos To: gentoo-dev@lists.gentoo.org Subject: Re: [gentoo-dev] cvs.gentoo.org, git.gentoo.org, *.overlays.gentoo.org migration timeline & ssh keys In-Reply-To: (Robin H. Johnson's message of "Mon, 30 Jun 2014 22:26:52 +0000") References: User-Agent: Gnus/5.130012 (Ma Gnus v0.12) Emacs/24.4.50 (gnu/linux) Face: iVBORw0KGgoAAAANSUhEUgAAABAAAAAQAgMAAABinRfyAAAACVBMVEX///8ZGXBQKKnCrDQ3 AAAAJElEQVQImWNgQAAXzwQg4SKASgAlXIEEiwsSIYBEcLaAtMEAADJnB+kKcKioAAAAAElFTkSu QmCC Copyright: Copyright 2014 James Cloos OpenPGP: 0x997A9F17ED7DAEA6; url=https://jhcloos.com/public_key/0x997A9F17ED7DAEA6.asc OpenPGP-Fingerprint: E9E9 F828 61A4 6EA9 0F2B 63E7 997A 9F17 ED7D AEA6 Date: Tue, 01 Jul 2014 17:21:16 -0400 Message-ID: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha1; protocol="application/pgp-signature" X-Hashcash: 1:30:140701:gentoo-dev@lists.gentoo.org::eM4cSRYn3rJebsaP:000000000000000000000000000000000q9XRr X-Archives-Salt: f1cebbf0-3dbb-4986-9b4f-8b84cf373db5 X-Archives-Hash: d9f95af7fa70bb86dca854ab9eb34f74 --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable A quick test shows that the sshfp for the ed25519 key for the current host is not published; those who configure ssh to prefer ssh-ed25519 and VerifyHostKeyDNS will get an error about that, even after accepting the key, just because the other keys' sshfps are published. Please be sure to publish sshfp for all four keys when the new host takes over. Thanks! =2DJimC =2D-=20 James Cloos OpenPGP: 0x997A9F17ED7DAEA6 --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBAgAGBQJTsyZtAAoJECPGzfcnLZ1DEtQQAO8NDACfYXZbkD6y/c7ZrBmz b4m9+8dhZDfWxuF0eILHlWezFoQF1ZhBiJD7uxIDeobhNrJeeK9FILPptrXu3GSR Fuy6tCnBQzu36+O3LS/UESR2OzJ1YP6T7WeMkX+NyGX+1W6uJm1IfMvMuwVZh7fo e1QwC2jZB0+o3HRIrfgdnJZQzplnAlppsuuiLE6DNF5U237Kb7s9ZnQqSUonMKCl 7Ye7W+8DjSh6EZxGiOtprtYp0QzeZobm6AAjFkzGCkWtRJ5MNkUPHAPOTPwsTkX8 iSTBLh9OjmFEJ3O3UPlPBxKjpMZSkW0bnuNoZ8UaEg34ZIW/0YjgrI14P6l380vq WbGmNBUIHw7inuhXe5FTlIZD+JXc74UK3KcaIn6cYX+q1yAegdWle3nFJCuHUPq/ 0TAljQAXmMgc0lQO9CGQqJFWOwLgyClSqx+1xvEuDULXUla8qCosJY6wwth7q6Of KBC/iWBRejGeRV038jWf/gYZVBCBmMqmYlNBA5mThCuLj/Y0TIIFVVFArTw6Se2i PaX7dNqAT8qBK664Qc+YgFDVR1qX79yHTLq4DtVJ17+kirHx9c05RT/HtcE21KZD e5rZVbq5sv57KgMj5iElf1eap3zeXPOirfkX6zoIn6oeh2pKoVyxUyAOOWDPWGqd 481jt3ZCJnQ9D2ouFec2 =5Pf9 -----END PGP SIGNATURE----- --=-=-=--