commons-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Henri Yandell" <flame...@gmail.com>
Subject Re: [all] MD5 and PGP generation [Was: [feedparser] News / Status]
Date Thu, 02 Mar 2006 22:50:13 GMT
On 3/2/06, robert burrell donkin <robertburrelldonkin@blueyonder.co.uk> wrote:
> On Thu, 2006-03-02 at 14:03 -0800, Henri Yandell wrote:
> > Yeah, running it isn't really the problem. Managing the key when you
> > don't use it for email is the bit that got painful.
>
> you don't really need to do any key management (unless you want to). a
> key used for code signing can just be get safe on removable media until
> it's needed.

Yeah, gonna go buy a few usb keys, burn it to a cd etc.

> building a strong web of trust requires key management but even that's
> not too painful if you only do it at apachecon.
>
> > We're not supposed to be using the pgp on minotaur; so my TODO is to
> > figure out how to get my key off of there, hope I still know the
> > passphrase,
>
> i hope so too :)
>
> there are various ways to export the key but copying the files should
> work fine too.

Advice is to revoke it - as who knows what you evil buggers have been
doing to it :)

So am walking through the revocation process and will update the
dev/pgp page with it.

Then I can start doing releases again perhaps.

Hen

---------------------------------------------------------------------
To unsubscribe, e-mail: commons-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: commons-dev-help@jakarta.apache.org


Mime
View raw message