Re: Keysigning in times of COVID-19

[Guilhem Moulin]

Hi,

On Thu, 13 Aug 2020 at 14:11:14 +0200, Pierre-Elliott Bécue wrote:
> Le jeudi 13 août 2020 à 07:42:29-0400, Sam Hartman a écrit :
>>> "Paul" == Paul Wise  writes:
>> 
>>   Paul> On Wed, Aug 12, 2020 at 3:27 PM Pierre-Elliott Bécue wrote:
>>   >> I'd rather try to solve the issue in a more sensible way : lower
>>   >> the number of expected GPG signatures to 0 temporarily, and ask
>>   >> for two or three advocacies from DDs.
>> 
>>   Paul> This seems like the most natural solution to the problem of
>>   Paul> COVID mentioned thus far.
>> 
>> How do you feel about the idea of short-term expirations on signatures
>> proposed in the previous message on the list?
> 
> Unless I missed a GPG capability, this seems kinda technically hard to
> do.

gpg has a `--ask-cert-expire` flag and a `--default-cert-expire` option
in that effect.  Expired certification signatures will be ignored when
building the Web of Trust.

Cheers
-- 
Guilhem.


signature.asc
Description: PGP signature

Re: Support WKD (and WKS) for @debian.org email addresses?

[Guilhem Moulin]

Hi,

On Wed, 07 Nov 2018 at 18:20:16 +, Ian Jackson wrote:
> Personally I think the hash is bizarre.  Why make this protocol depend
> on an obsolete hash function ?  One could just url-encode the email
> address.  The server could deal with case-folding etc.

Dunno if you'll find the arguments convincing, but FWIW this was brought up to
gnupg-devel in May 2016: see 
https://lists.gnupg.org/pipermail/gnupg-devel/2016-May/031068.html
and follow-ups in that thread.

Cheers,
-- 
Guilhem.


signature.asc
Description: PGP signature