[aur-general] Developer / TU key signing, first master key available
Daenyth
daenyth+arch at gmail.com
Sun Dec 4 21:44:33 EST 2011
Note that I added the reply also as an attachment in case my email
body gets changed by gmail..
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sat, Nov 19, 2011 at 09:38, Thomas Bächler <thomas at archlinux.org> wrote:
> Hello developers / TUs,
>
> My Arch master key is available at [1] with fingerprint 6841 48BB 25B4
> 9E98 6A49 44C5 5184 252D 824B 18E8.
>
> Every packager, please do the following:
> 1) Reply to this email to thomas at master-key.archlinux.org and fully
> quote this email. Include your gerolde/sigurd username in the email.
> Sign your reply using your GPG key.
> 2) Upload your public key (gpg --armor --export $KEYID) to your home
> directory on gerolde/sigurd under the name $HOME/arch-linux-packager-key.
> 3) Name at least one package in the repositories already signed with
> your key.
>
> Sadly, this process will only prove that you are in posession of the ssh
> key to upload packages into the repositories. I will contact you
> personally afterwards if I need further identification.
>
> Please note: there are be 5 master key holders (Allan, Dan, Pierre,
> Ionut, me), and you need at least 3 signatures on your key so your
> packages will be trusted by pacman.
>
> Regards
> Thomas
>
> [1] https://dev.archlinux.org/~thomas/thomas_AT_master-key.archlinux.org.asc
>
My usernname is (surprisingly) Daenyth on sigurd.
Signed Packages: tremulous
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=BF0W
-----END PGP SIGNATURE-----
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sat, Nov 19, 2011 at 09:38, Thomas Bächler <thomas at archlinux.org> wrote:
> Hello developers / TUs,
>
> My Arch master key is available at [1] with fingerprint 6841 48BB 25B4
> 9E98 6A49 44C5 5184 252D 824B 18E8.
>
> Every packager, please do the following:
> 1) Reply to this email to thomas at master-key.archlinux.org and fully
> quote this email. Include your gerolde/sigurd username in the email.
> Sign your reply using your GPG key.
> 2) Upload your public key (gpg --armor --export $KEYID) to your home
> directory on gerolde/sigurd under the name $HOME/arch-linux-packager-key.
> 3) Name at least one package in the repositories already signed with
> your key.
>
> Sadly, this process will only prove that you are in posession of the ssh
> key to upload packages into the repositories. I will contact you
> personally afterwards if I need further identification.
>
> Please note: there are be 5 master key holders (Allan, Dan, Pierre,
> Ionut, me), and you need at least 3 signatures on your key so your
> packages will be trusted by pacman.
>
> Regards
> Thomas
>
> [1] https://dev.archlinux.org/~thomas/thomas_AT_master-key.archlinux.org.asc
>
My usernname is (surprisingly) Daenyth on sigurd.
Signed Packages: tremulous
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iQIcBAEBAgAGBQJO3C+4AAoJEKABh2aZrW6EjHQP/0NQTolIFMyywHj+Z/sqAnmG
M5bTqD4OIvarDrmmD1ps4mgQRv9HeASo/DIqyJO6pY1eE6v8yQYMBZQ+xWRJWhUB
4qo1hRIX/BuA9JFIDUjFP1j4nF/Dj23GgIumYsQg3aXREoL23ILxovjhVBMAZLhz
48fOGPmP6Al+eRk9jHgtHuetSTk8Ya10TWil80HYDjpLOKG7uyBnVBDWjc7lo5aL
YKEjQHOcecP4sI5nLl50uzyOam7P/IbajZ1lnUhmqB2a2peSILtrUeNHICYA/XGm
92VKT42omsdNHqDIbvK2nDlEZs5MmrEsQCOqMr2qzmnQLbFuiw40rJ8fNnp/Ot2k
fsQfxIrVs+NkUdBeEPlv7FbXT0RqLJYQN2MmjEvPheyXUYWoEFJ0Da7k9tKZarvv
XLMP1QIvzxM0lkconEkKAovv415gIvAScBraPjbq9+OfFMPOANT3sUj6FJjpDRg4
xFS6fO3nSWXbemk6Yt9s/KdgsuU5Gju8Jpok44USQSX3pOIlyA3AvqSv7JPKMIqQ
TBXS2OwOb3aJ+lAcsbSh4EnhCrSMRhYBGypwCkDAtLlOzIGLHrNixt9Ohwb7qXFc
JCTXqLdOitEOy0xtaQSBG9B4aAv/J//p72cn3NgzoNDW+0dyzrOEHgEONMM3nLOf
7f77PlTo18q6qOMCcAOw
=BF0W
-----END PGP SIGNATURE-----
More information about the aur-general
mailing list