| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <4E90BC10.5020300@zytor.com> Date: Sat, 08 Oct 2011 14:09:36 -0700 From: "H. Peter Anvin" <hpa@...or.com> To: Jon Masters <jonathan@...masters.org> CC: Valdis.Kletnieks@...edu, Krzysztof Halasa <khc@...waw.pl>, Adrian Bunk <bunk@...sta.de>, "Frank Ch. Eigler" <fche@...hat.com>, "Rafael J. Wysocki" <rjw@...k.pl>, Linux Kernel Mailing List <linux-kernel@...r.kernel.org>, Greg KH <gregkh@...e.de> Subject: Re: kernel.org status: establishing a PGP web of trust On 10/08/2011 10:59 AM, Jon Masters wrote: > > Good point about being pedantic, and the rest of your comments :) I > understand that I'm taking this a little far but I'm just trying to > point out one particular gaping hole in the way these things are > currently done. One reason I stopped doing keysigning parties is that I > realized they were mostly a show. You turn up and get a key signed and > then everyone is impressed that you're in the strong set...wupdedoo. Not > that I've anything against signing stuff on kernel.org and trying to > improve things (I've long directly signed everything on master with my > own keys in slight violation of policy, but that turned out to right). > Not so much in violation of policy... we just couldn't get people to do it. -hpa -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists