Re: [hackathon] Keysigning

From: C. Michael Pilato <cmpilato_at_collab.net>
Date: Mon, 02 May 2011 13:59:43 -0400

On 05/02/2011 01:51 PM, Daniel Shahaf wrote:
> C. Michael Pilato wrote on Mon, May 02, 2011 at 13:20:30 -0400:
>> On 04/27/2011 02:42 AM, Daniel Shahaf wrote:
>>> to add other keys if you want) to ^/subversion/site/keys/$username.asc .
>>
>> I wonder if we couldn't reduce data duplication by instead recommending that
>> committers update their Apache-wide FOAF data with this information? (See
>> http://people.apache.org/foaf/index.html for instructions.)
>
> Good point, maintaining that centrally makes sense.
>
> However, currently the data on people.a.o isn't quite "easily accessible".
> (Can't mechanically fetch a fingerprint (let alone a key) given a username
> without html scraping or access to the source xml; and throwing the keys in
> an https svn directory does allow for that.)

Totally agree with that. It took no small amount of poking around at
people.apache.org to locate my own PGP fingerprint.

> I suppose the "real" solution is to get people.a.o to allow to fetch the
> keys/fingerprints more easily.

+1.

> I'll start a discussion on site-dev@, and I'll post back here if
> a centralized solution is up before the hackathon.

Cool. Thanks, Daniel.

-- 
C. Michael Pilato <cmpilato_at_collab.net>
CollabNet   <>   www.collab.net   <>   Distributed Development On Demand

application/pgp-signature attachment: OpenPGP digital signature

Received on 2011-05-02 20:00:13 CEST

This message: [ Message body ]
Next message: Greg Stein: "Re: svn commit: r1098649 - in /subversion/trunk/subversion/libsvn_client: client.h commit.c commit_util.c copy.c"
Previous message: Daniel Shahaf: "Re: [hackathon] Keysigning"
In reply to: Daniel Shahaf: "Re: [hackathon] Keysigning"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]