On 17-02-12 00:41:38, David Craven wrote: > > It might be nice to associate with each committer, a list of all keys > > that they have ever used to sign commits in our git repository. > > > Keys would be added to the list over time, but never removed. > > Sounds good. Where would we put that list? And does that list also
Would the git repository, or a new git repository (guix-keys.git?) be a bad idea? Best case, we craft something which serves as an GNUPG_HOME for the keys which then live in the keyring of this thing (compare to gentoo-keys, debian-keys, etc). > need to be signed? Puh, lucky for me I don't have to be responsible > for that key =P > > For now my public keys are published on mit.edu, so they shouldn't be lost > and can be retrieved when this list materializes. > > > The conventional usage of Savannah's ssh key registry is to include only > > currently active keys, and that's needed as well. > > I updated the key. > -- ng0 -- https://www.inventati.org/patternsinthechaos/
