7 Nov
2003
7 Nov
'03
1:50 p.m.
Nikodemus Siivola nikodemus@random-state.net writes:
Imagine: somehow the key gets stolen. Now the purveyor of the key can sign stuff as Common-lisp.net, including keys of maliscious package authors, which people will then install and run because the author's key was trusted by Common-lisp.net...
Ok, good point. So, who gets to know the key, then?
Erik.
7 Nov
7 Nov
2:02 p.m.
New subject: [clo-devel] Re: Please upload your public GPG key to common-lisp.net
On Fri, Nov 07, 2003 at 08:50:29AM -0500, Erik Enge wrote:
Ok, good point. So, who gets to know the key, then?
Need To Know Basis, of course. As long as you're willing to shoulder the signing, no-one else needs to know. If you think you need help, then someone else as well.
Cheers,
-- Nikodemus
7623
Age (days ago)
7623
Last active (days ago)
1 comments
2 participants
participants (2)
-
Erik Enge -
Nikodemus Siivola