On Wed, 9 Jun 2004 18:17:56 +0300 (EEST), Nikodemus Siivola tsiivola@cc.hut.fi said:
Nikodemus> On Wed, 9 Jun 2004, Martin Simmons wrote:
Sorry, I'm not sure what I'm supposed to do here. Is this public key related to the ~/.ssh/id_dsa.pub file that was generated by ssh-keygen? I don't have gpg on the Mac where I ran this.
Nikodemus> Apologies, I should have been clearer in the original message.
Nikodemus> We treat developer GPG public keys as an opaque identities: if we need to Nikodemus> confirm that the person we're dealing with tomorrow is the same one that Nikodemus> originally got the account, or eg. in order to send out a passwords Nikodemus> encrypted. After the recent attack we're tightening up our procedures on Nikodemus> this front as well.
Nikodemus> The pubkey.asc is entirely a GPG affair, unrelated to SSH. As long as Nikodemus> nothing untowards happens the matter of your GPG public key is not urgent.
Nikodemus> If/when you have the occasion, installing GPG and uploading the public key Nikodemus> to your home directory would be a good insurance. If you have GPG Nikodemus> installed on some other computer you can of course export the key from Nikodemus> there as well -- the GPG keys are personal, not per computer like SSH Nikodemus> keys.
Thanks, I suspected they were different things. I'll do this soon.
__Martin