From: Patrick Lauer <patrick@gentoo.org>
To: gentoo-project@lists.gentoo.org
Subject: [gentoo-project] Re: [gentoo-dev-announce] Call for agenda items - pgp key handling
Date: Wed, 30 Oct 2013 08:33:51 +0800 [thread overview]
Message-ID: <527053EF.9080200@gentoo.org> (raw)
In-Reply-To: <1701685.NthhqudeZE@kailua>
On 10/29/2013 09:23 PM, Andreas K. Huettel wrote:
> In two weeks from now, the council will again have its regular monthly
> meeting. Now is the time to raise and prepare items that the council should
> put on the agenda to discuss or vote on.
Request: A minimal policy for pgp keys and key handling (for commit signing)
- Define the allowed key parameters:
e.g. 2048bit RSA or DSA, validity at least 6 months
- Define a canonical location (e.g. in LDAP and on at least one
keyserver) where every dev's key is accessible (at least to gentoo infra)
- Define a location of a (signed, autoupdated) global keyring that is
accessible to all interested parties (e.g.
http://www.gentoo.org/keyring.txt )
That's the first stage that can be done now without big problems, and it
can be amended at any later time if there's any deficiencies.
(so if we agree that 2048 bit are not enough we just fix it to 4096 bit
and a three-month migration time)
With that in place we can make commit signing mandatory (because right
now we don't even have a way to fetch all keys, so it's worse than
useless).
And then as a third stage we can discuss things like, say, disabling
commit access when the key is less than a month valid (after sending
some automated warning mails, yes?) and other ways to make this meaningful.
But - let's not get carried away in a big debate about how the NSA has
infiltrated the minds of at least three devs, so we need four signatures
on every commit before it goes live, and other unrelated madness. Just
define the minimum set of rules to make signing useful, and then figure
out how to enforce it.
(As a sidenote, someone might want to figure out how to do remote signed
commits - last time this was discussed I think there were some minor
issues that should be worked out so that we're all not too affected with
workflow changes)
Thanks,
Patrick
next prev parent reply other threads:[~2013-10-30 0:32 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <1701685.NthhqudeZE@kailua>
2013-10-29 21:50 ` [gentoo-project] Metastructure: Dead projects (was: Call for agenda items - Council meeting 2013-11-12) Andreas K. Huettel
2013-10-29 21:55 ` [gentoo-project] Metastructure: reorganization (Was: " Andreas K. Huettel
2013-10-29 22:15 ` Ulrich Mueller
2013-10-29 22:48 ` Andreas K. Huettel
2013-10-30 6:46 ` [gentoo-project] Metastructure: reorganization Ulrich Mueller
2013-10-30 7:36 ` Rich Freeman
2013-10-30 13:00 ` Panagiotis Christopoulos
2013-10-30 0:33 ` Patrick Lauer [this message]
2013-10-30 5:35 ` [gentoo-project] Re: [gentoo-dev-announce] Call for agenda items - pgp key handling Brian Dolbec
2013-10-30 5:55 ` Rich Freeman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=527053EF.9080200@gentoo.org \
--to=patrick@gentoo.org \
--cc=gentoo-project@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox