gnu-arch-users
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnu-arch-users] (volunteers?) crypto signatures for arch

From: Robert Collins
Subject: Re: [Gnu-arch-users] (volunteers?) crypto signatures for arch
Date: Mon, 08 Dec 2003 08:46:04 +1100 
On Mon, 2003-12-08 at 08:42, Karel Gardas wrote:
> > I suggest --gpg-key=<string> to commit, and have no field name to
> > suggest at this point.
> 
> Hmm, is this really worth the effort of added complexity to support
> optional resigning instead of dump-copy of signatures?

Yes. 
Trivial case: uploading from an unsigned mirror to a signed public
mirror.
Trivial case: The public mirror is to be all signed by the 'authorised
uploader', not the individual contributors.

> BTW: for x509 you will need to change --gpg-key to something else. What
> about to use: --sign-key=<string> --sign-mech=<mech>, where mech might be
> ``gpg'' or ``x509'' or others...

Wouldn't it make sense to simply use x509 all the time ?
Alternatively, we could have a gpg-options="--sign-key=rbtcollins
--sign-mech=x509" tla command, which is then passed through to gpg.

Rob

-- 
GPG key available at: <http://www.robertcollins.net/keys.txt>.

Attachment: signature.asc
Description: This is a digitally signed message part

reply via email to
[Prev in Thread] Current Thread [Next in Thread]