Re: When is it acceptable to revoke my gpg key?
Re: Roberto C. Sanchez in [EMAIL PROTECTED] I recently generated a new gpg key. I was planning on revoking my old key, however all of my packages were uploaded with signatures from my old key. Do I need to prepare new uploads with the new key? Since I am not too far into the NM process so far, my key is not in the Debian keyring yet, so I am not concerned about that. Thanks for any pointers. As you are not a DD, your packages carry your sponsor's signatures in the archive. Even for DDs, no new uploads are necessary. Christoph -- [EMAIL PROTECTED] | http://www.df7cb.de/ signature.asc Description: Digital signature
Re: When is it acceptable to revoke my gpg key?
On Tue, Oct 18, 2005 at 01:17:54PM +0200, Christoph Berg wrote: Re: Roberto C. Sanchez in [EMAIL PROTECTED] I recently generated a new gpg key. I was planning on revoking my old key, however all of my packages were uploaded with signatures from my old key. Do I need to prepare new uploads with the new key? Since I am not too far into the NM process so far, my key is not in the Debian keyring yet, so I am not concerned about that. Thanks for any pointers. As you are not a DD, your packages carry your sponsor's signatures in the archive. Even for DDs, no new uploads are necessary. Thanks for the pointer. I was a bit confused since my QA page shows my key ID on it. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto pgpQdIWSLOCAN.pgp Description: PGP signature
Re: When is it acceptable to revoke my gpg key?
Re: Roberto C. Sanchez in [EMAIL PROTECTED] Thanks for the pointer. I was a bit confused since my QA page shows my key ID on it. DDPO (aka developer.php) doesn't do that anymore. The code had been broken for some time, and was disabled several weeks ago. The gpg keyid was only informational anyway (and never really worked, unfortunately). Christoph -- [EMAIL PROTECTED] | http://www.df7cb.de/ signature.asc Description: Digital signature
When is it acceptable to revoke my gpg key?
I recently generated a new gpg key. I was planning on revoking my old key, however all of my packages were uploaded with signatures from my old key. Do I need to prepare new uploads with the new key? Since I am not too far into the NM process so far, my key is not in the Debian keyring yet, so I am not concerned about that. Thanks for any pointers. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto pgp7j2I7UfCk7.pgp Description: PGP signature
