Re: kernel.org status: establishing a PGP web of trust

From: Ben Pfaff
Date: Sun Oct 02 2011 - 21:32:27 EST

Next message: Axel Lin: "[PATCH] ASoC: txx9: Add __exit_p at necessary place"
Previous message: Paul Walmsley: "Re: [PATCH 08/30] ARM: omap2+: fix building without i2c"
In reply to: Henrique de Moraes Holschuh: "Re: kernel.org status: establishing a PGP web of trust"
Next in thread: H. Peter Anvin: "Re: kernel.org status: establishing a PGP web of trust"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

"H. Peter Anvin" <hpa@xxxxxxxxx> writes:

> 5. Get as many other kernel developers that you have physical access to
> to sign your key after verifying the fingerprint. Verifying keys
> over the phone is OK if and only if you know them *extremely* well;
> think "would I be willing to testify in court that the person I
> talked to was X"?

There is already an extensive Debian web of trust, and along with
it a keysigning coordination effort and even a long list of
Debian developers who offer to sign keys, with their physical
locations and email addresses:
http://wiki.debian.org/Keysigning/Offers

I wonder whether either effort would benefit from joining forces?
I am also sure that there is overlap between Debian developers
and kernel developers.
--
Ben Pfaff
http://benpfaff.org
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Axel Lin: "[PATCH] ASoC: txx9: Add __exit_p at necessary place"
Previous message: Paul Walmsley: "Re: [PATCH 08/30] ARM: omap2+: fix building without i2c"
In reply to: Henrique de Moraes Holschuh: "Re: kernel.org status: establishing a PGP web of trust"
Next in thread: H. Peter Anvin: "Re: kernel.org status: establishing a PGP web of trust"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]