Greetings folks, We will again be running a GPG keysigning event at the upcoming ODL Developer Forum. I'm hoping Phil says yes to my suggestion of running it just before lunch on September 29 (last day of DDF)
For those that have participated in the last couple you should be well familiar with the process by now. We've got a good cohort of signed keys and provided we have many of those folks participating it will help. As such we're going to be executing on the strict "Hashed Based Method Party" [0]. Here's what you need to know. You will be _required_ two have forms of identification with you. I will be encouraging people to still request validation. When I have more firm time for when the party will happen I will be letting the lists know. In the mean time, what I need from folks is the following: 0) If you do not currently have a GPG key but wish to participate, make sure you generate a key. I strongly recommend doing an offline master [1], and even better if you've got a GPG smartcard (such as a YubiKey NEO or similar) for your subkeys [2]. 1) If you wish to participate you _must_ comply with the following: a) Your public key _must_ be on the keyserver mesh b) When I pull your public key, it must have both a signing subkey and an encrypting subkey. If you don't have those I will reject your key as virtually worthless without them. c) You _must_ mail the following to [email protected] if you mail me (or the mailing lists directly) I will ignore the message. Information to be mail is your key fingerprint: --[cut]-- gpg --fingerprint <your_email_address|keyID> --[/cut]-- On my Linux system I would do the following for my key with handle 03A9DA1F --[cut]-- [tykeal@tykes-place ~]$ gpg --fingerprint 03A9DA1F pub 4096R/03A9DA1F 2014-01-29 Key fingerprint = FA4D B93E B903 4BBF B853 2A26 3360 FFB7 03A9 DA1F uid [ultimate] Andrew Grimberg <[email protected]> uid [ultimate] Andrew Grimberg <[email protected]> uid [ultimate] Andrew Grimberg <[email protected]> sub 2048R/DBD7220B 2015-01-15 [expires: 2017-01-14] sub 2048R/437705B4 2015-01-15 sub 2048R/628F97AE 2015-01-15 [expires: 2017-01-14] [tykeal@tykes-place ~]$ echo `gpg --fingerprint 03A9DA1F` | mail -s "Andy's GPG fingerprint" [email protected] --[/cut]-- NOTE: The above may or may not work for you, particularly if you're on a Mac. As we get closer to the Developer Forum I will be setting a hard date and time limit on when I will accept further submissions. After that I will no longer accept them. You will need to have the following with you to participate: 1) Yourself, you must be physically present for your key to be signed in this party 2) Positive picture ID. Passports are strongly encouraged 3) Your key ID, key type, HEX fingerprint, and key size 4) A way to validate the hash of the keyring that will be generated by me for the party participants from the submitted keys (that is, a device capable of executing sha512sum) or a willingness to trust those around you to do it for you. Alternatively, since I will be sending the keyring out electronically before the party to the participants, you may bring a copy of the computed sha512sum of the file and leave your device put away. 5) A willingness to talk with people and show them your identification documents [0] http://www.cryptnet.net/fdp/crypto/keysigning_party/en/keysigning_party.html#hash_based [1] https://alexcabal.com/creating-the-perfect-gpg-keypair/ [2] https://www.yubico.com/products/yubikey-hardware/yubikey-neo/ -Andy- -- Andrew J Grimberg Systems Administrator Release Engineering Team Lead The Linux Foundation
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Discuss mailing list [email protected] https://lists.opendaylight.org/mailman/listinfo/discuss
