On Fri, Jun 19, 2026 at 03:22:51AM +0000, Gary Buhrmaster wrote:
> On Thu, Jun 18, 2026 at 9:01 PM Kevin Fenzi <[email protected]> wrote:
> 
> > So, we can surely change the requirement to be MUST (and we probibly
> > should), but there's a bunch of corner cases and things to note:
> 
> (is that a "should" or a "MUST" (ha ha))
> 
> SHOULD was best the community would seem to accept
> at the time due to some strong objections to a MUST.

:)

> >   The new ssh keys that use fido2/etc won't work against
> >   src.fedoraproject.org because it's RHEL8 and doesn't understand them,
> >   but we could perhaps setup some requirement for the new forgejo setup
> >   to need them.
> 
> Is there any resourced plan to upgrade to a RHEL that
> supports the ssh FIDO2 encryption types?  I would love
> to migrate to a FIDO2 required ssh key (and while I am
> not a PP, so am probably not a major risk to the
> community, I like to believe I take security seriously).

Yes, by migrating src.fedoraproject.org away to forgejo.
 
kevin
-- 
_______________________________________________
devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: 
https://forge.fedoraproject.org/infra/tickets/issues/new

Reply via email to