[arch-dev-public] TU - Lost private key
Hi I recently lost my private key and I can't package for community. What are the steps in this case? Thanks -- Alexandre Filgueira - http://www.alexfilgueira.com
Am 05.11.2015 um 19:09 schrieb Alexandre Filgueira:
Hi
I recently lost my private key and I can't package for community. What are the steps in this case?
Thanks
That depends. Did you lose your ssh private key of gpg private key? Loss of the ssh private key is less of a problem than loss of the gpg private key for me.
On Thu, 5 Nov 2015 21:35:23 +0100 Thomas Bächler <thomas@archlinux.org> wrote:
Did you lose your ssh private key of gpg private key?
Also did you loose it as in "someone else has it" (aka compromised) or did you only delete it? I certainly hope it's the latter.
Hi I have the ssh but erased (not compromised) the gpg private key El jue, 5 de nov 2015 a las 3:40 , Florian Pritz <bluewind@xinu.at> escribió:
On Thu, 5 Nov 2015 21:35:23 +0100 Thomas Bächler <thomas@archlinux.org> wrote:
Did you lose your ssh private key of gpg private key?
Also did you loose it as in "someone else has it" (aka compromised) or did you only delete it? I certainly hope it's the latter.
On 06/11/15 06:46, Alex Filgueira wrote:
Hi
I have the ssh but erased (not compromised) the gpg private key
You will need to generate a new key, and arrange to get is signed by all the master key holders. Open a bug in the keyring section (if you have access). Once that is done, we may want to consider rebuilding your packages and revoking your old key from the keyring. At that stage, you may want to revoke it formally too (assuming you stored the revoke certificate somewhere safe). Allan
Thanks Allan Will do that El jue, 5 de nov 2015 a las 8:14 , Allan McRae <allan@archlinux.org> escribió:
On 06/11/15 06:46, Alex Filgueira wrote:
Hi
I have the ssh but erased (not compromised) the gpg private key
You will need to generate a new key, and arrange to get is signed by all the master key holders. Open a bug in the keyring section (if you have access).
Once that is done, we may want to consider rebuilding your packages and revoking your old key from the keyring. At that stage, you may want to revoke it formally too (assuming you stored the revoke certificate somewhere safe).
Allan
participants (5)
-
Alex Filgueira
-
Alexandre Filgueira
-
Allan McRae
-
Florian Pritz
-
Thomas Bächler