lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:	Thu, 20 Oct 2011 16:47:59 -0400
From:	Ted Ts'o <tytso@....edu>
To:	Phillip Lougher <phil.lougher@...il.com>
Cc:	"H. Peter Anvin" <hpa@...or.com>, greg@...ah.com,
	linux-kernel@...r.kernel.org, phillip@...gher.demon.co.uk
Subject: Re: Procedural requirements for restoring kernel.org accounts

On Thu, Oct 20, 2011 at 09:33:20PM +0100, Phillip Lougher wrote:
> 
> I notice a key signing has been announced for the KS
> (http://sites.google.com/site/kernelsummit2011/gpg-key-verification) @
> 4.30pm on Tuesday, open to all LCE attendees.   However, I'm sure I'm
> not the only one who doesn't get into Prague early enough to go to
> this.  So, will there be another key signing session held during the
> three days of LCE, and will the procedure mentioned in the link above
> ("If you would like to participate, please send an e-mail to
> prague-key-submission@...glegroups.com") apply too?

If you're not going to be able to make the key signing on Tuesday,
please don't bother to send your key to
prague-key-submission@...glegroups.com, since that won't do much good.

Instead, I would suggest that you use the script called gpg-key2ps,
which can be found in a package called pgp-tools (Fedora/Red Hat/SuSE)
or signing-party (Debian/Ubuntu), or from the source tree found at
http://pgp-tools.alioth.debian.org.

This will print out your keys multiple times on a piece of paper, so
you can cut them into paper strips.  There will be many kernel
developers staying the whole week.  You can ask them to sign your key,
and then hand them one of the strips of paper.  You will need to
convince them of your identity; this can be done with government
issued ID, although some kernel developers may not be comfortable
doing this since they might not know what a Welsh identity card or UK
passport might look like.  So some kernel developers may only sign a
key if they know you personally.  Other kernel developers are willing
to trust government issued ID (I've been around the world enough so I
know what a UK passport looks like :-).

Regards,

						- Ted
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ