On Sat, 10 Apr 2021 at 02:46, Aurelien Bompard <[email protected]> wrote:
> > > > * If they are Red Hat employees we can use the internal verify thing > > > > Yes. Is there a way we could extend something similar to non-RHers? > > That would be interesting, how does it work? Can we replicate it in some > way? > > This internal verify only works if both people can login and send back and forth a secret. It does not work if one party can not log in. The backup method requires IT to have access to certain personal information from HR which they can use to work out how trustworthy the person on the other side is. This is cost prohibitive for us (in both time and wanting to store PII safely). > > > * We could use gpg signed email if there is a gpg key assigned to the > > > account. > > > * Could we use ssh key to verify them? > > Like asking them to edit a file on people.fp.o? But I suppose not > everybody will have an ssh key either. > > A. > _______________________________________________ > infrastructure mailing list -- [email protected] > To unsubscribe send an email to > [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedoraproject.org/archives/list/[email protected] > Do not reply to spam on the list, report it: > https://pagure.io/fedora-infrastructure > -- Stephen J Smoogen.
_______________________________________________ infrastructure mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
