Your message dated Thu, 28 Nov 2024 18:21:16 +0000 with message-id <[email protected]> and subject line Bug#1085868: Removed package(s) from unstable has caused the Debian Bug report #931465, regarding monkeysphere-authentication: improve OpenPGP certificate retrieval to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 931465: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931465 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: monkeysphere Version: 0.44-1 Severity: wishlist Given the ongoing troubles with OpenPGP certificate distribution (SKS certificate flooding, etc), it would be good to have a way to manually inject certificates that the monkeysphere-authentication subsystem could know about. It would also be good to be able to discover OpenPGP certificates from user IDs based on alternate query approaches, like WKD, DANE/OPENPGPKEY, etc. Currently, an administrator might do: monkeysphere-authentication gpg-cmd --import < /path/to/newcert.key or monkeysphere-authentication gpg-cmd --locate-keys [email protected] But i'd really like to deprecate "monekysphere-authentication gpg-cmd" in general (so that we can at some point implement monkeysphere without using gpg on the backend). So that suggests that the local administrator who has some other means of certificate retrieval probably wants to be able to do: monkeysphere-authentication import < /path/to/newcert.key And that "monkeysphere-authentication update-users" ought to do WKD and DANE lookups where possible when trying to discover new certificates. This also means that it's likely that monkeysphere-authentication needs to think about how to refresh (for revocations, subkey updates) differently than it does for lookup by user ID. With these fixes in place, monkeysphere should probably also focus on fetching refreshes from some stable, robust keyserver like hkps://keys.openpgp.org. So this bug report is asking for all of these fixes in monekysphere-authentication. --dkg
signature.asc
Description: PGP signature
--- End Message ---
--- Begin Message ---Version: 0.43-3.1+rm Dear submitter, as the package monkeysphere has just been removed from the Debian archive unstable we hereby close the associated bug reports. We are sorry that we couldn't deal with your issue properly. For details on the removal, please see https://bugs.debian.org/1085868 The version of this package that was in Debian prior to this removal can still be found using https://snapshot.debian.org/. Please note that the changes have been done on the master archive and will not propagate to any mirrors until the next dinstall run at the earliest. This message was generated automatically; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]. Debian distribution maintenance software pp. Thorsten Alteholz (the ftpmaster behind the curtain)
--- End Message ---
