[pkg-bioc] Some error/warning reports
Steffen Moeller
steffen_moeller at gmx.de
Wed Jul 11 06:58:10 UTC 2007
On Tuesday 10 July 2007 16:14:50 elw at stderr.org wrote:
> > Any comment on other questions i.e.:
> >> - where do I get proper GPG keys
>
> those are downloadable from the public pgp keyservers, typically, and
> added to APT's keychain with apt-key.
>
> i have no idea how best to do this inside a pbuilder session.
>
> is it possible to inject a set of keys into a pbuilder session from
> outside? where (and when) best should that be done?
Our pkg-bioc packages are indeed unsigned. We would need to generate
a key for the purpose, distribute it between the signers and offer that public
key on the wiki / web page. From there it can be imported by "apt-key add
<filename.asc>". Or Dirk as a DD could build and sign it all ... just
kidding.
Elijah and David, I just checked for the fun of it, your keys 39FA6421 and
4A47A3BD are not in the strong set of the web of trust. Dirk and I are two
hops away (http://pgp.cs.uu.nl/mk_path.cgi?FROM=91B0D3B7&TO=BE9D5339).
I also checked Gregor and found that has no key uploaded to a key server. This
shed some new light on his question. Gregor, maybe you want to read through
this: http://linuxreviews.org/howtos/gnupg/signingparty/
Cheers,
Steffen
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part.
Url : http://lists.alioth.debian.org/pipermail/pkg-bioc-devel/attachments/20070711/42446765/attachment.pgp
More information about the pkg-bioc-devel
mailing list