From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id ADC37138334 for ; Sun, 17 Feb 2019 18:54:25 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 2B1ADE0924; Sun, 17 Feb 2019 18:54:24 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id E84E0E090E for ; Sun, 17 Feb 2019 18:54:22 +0000 (UTC) Received: from gentoo.org (unknown [IPv6:2001:470:e1cc:2:2ac6:3fff:fee9:912]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: prometheanfire) by smtp.gentoo.org (Postfix) with ESMTPSA id 42E1A335C7A for ; Sun, 17 Feb 2019 18:54:19 +0000 (UTC) Date: Sun, 17 Feb 2019 12:54:16 -0600 From: Matthew Thode To: gentoo-project@lists.gentoo.org Subject: Re: [gentoo-project] [RFC] OpenPGP Authority Keys to provide validity of developer/service keys Message-ID: <20190217185416.nbgwm266moyk6j2u@gentoo.org> References: <1550306421.831.16.camel@gentoo.org> <1550393754.1257.5.camel@gentoo.org> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Project discussion list X-BeenThere: gentoo-project@lists.gentoo.org Reply-To: gentoo-project@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="i5pvquojftc2mnhs" Content-Disposition: inline In-Reply-To: <1550393754.1257.5.camel@gentoo.org> User-Agent: NeoMutt/20180716 X-Archives-Salt: 3a258cea-0e1e-45a3-a4dc-a440567bbd50 X-Archives-Hash: 26ccceb502676977f958c04c6836016f --i5pvquojftc2mnhs Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On 19-02-17 09:55:54, Micha=C5=82 G=C3=B3rny wrote: > On Sun, 2019-02-17 at 06:56 +0000, Robin H. Johnson wrote: > > On Sat, Feb 16, 2019 at 09:40:21AM +0100, Micha=C5=82 G=C3=B3rny wrote: >=20 > > 2. The uid signatures should NOT be naively exported to keyservers. They > > should use the CAFF method of generating a uid signature, writing it to= a file, > > and sending it as an encrypted message to the uid address. The uid owne= r is > > responsible for decrypt + sending to servers. This ensures that the ema= il > > address and key are still tied together. >=20 > That sounds like awful requirement of statefulness with requirement of > manual manipulation to me, i.e. a can of worms. Do we really need to > assume that Gentoo developers will be adding keys they can't use to > LDAP? >=20 It could also be a bad actor, though that comes with other concerns. The CAFF method is the standard way of handling signatures, switching to ldap also switches our trust store to be based on ldap, not developer keys (anything can be in ldap). --=20 Matthew Thode (prometheanfire) --i5pvquojftc2mnhs Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCgAdFiEExFR3cOKGRpGbcMHPZKN76q4ZpOgFAlxprdcACgkQZKN76q4Z pOjd/hAAtDmWuEPmCvulxvh5/eIAi0+4CqSr7FKtxTnQGEpTRKky++hFPLqzDXNV TMUNouH5ZrnixXi0FA/6tYs146kanOKnAjb/ad07Zg9CFJopwGk1k1k2YOjm/Jzz uUHrwMkIeiUWraOiHfz7CG0CKVJRXRJKuOYSImtI/X5Y/5prs9D2zbRQQ1GBnFCl xs8ZimxH4zlPGqSklyxQYmc2CEpmfsq4E+mYpSFwrxCInh1JXEW0w/yPTRpI0Hqd 2VJ47kID5R/FRgpXWQC3SEbVaEbXQiLzHJB+SntUjm4h+Oja7fFYzkffBd3nYEER yFyPm4OdggJ2tg6B13yjXZYud7uSfVd/rBXJm1yvTSrCJs6u3lS1qa6aeQxunSe5 cUy7szEI+kdZmW+e5M7KoouVBj8DiWpqqS+oEYRRsjotoc3diqWfe1GoK0kUXWlu e0QyL2XHq5jLfrAUVZqJY3TVWkTwCn6JKjVjcgpjWku2uHLi5ReAo/m62kbMIRJE 14T0opOLrknYc+m3wpT8JUGWj5uc0DNQkiM2HjvxV3kPXK6CJ8Hb3W8cualXLISW HM6lkvFqvyuIB0SZ0mWmp6bXUjRImIsWefl4NBRtkwvqo2ims6fjKTylbnGI/6i1 axObzdCjJJYXpBQKOuejAkjEQzlL91bmdVspF4i0FwWwU2uvp8s= =h52v -----END PGP SIGNATURE----- --i5pvquojftc2mnhs--