[pkg-bioc] Some error/warning reports
Gregor Gorjanc
gregor.gorjanc at bfro.uni-lj.si
Wed Jul 11 09:51:18 UTC 2007
Steffen Moeller wrote:
> On Tuesday 10 July 2007 16:14:50 elw at stderr.org wrote:
>>> Any comment on other questions i.e.:
>>>> - where do I get proper GPG keys
>> those are downloadable from the public pgp keyservers, typically, and
>> added to APT's keychain with apt-key.
>>
>> i have no idea how best to do this inside a pbuilder session.
>>
>> is it possible to inject a set of keys into a pbuilder session from
>> outside? where (and when) best should that be done?
>
> Our pkg-bioc packages are indeed unsigned. We would need to generate
> a key for the purpose, distribute it between the signers and offer that public
> key on the wiki / web page. From there it can be imported by "apt-key add
> <filename.asc>". Or Dirk as a DD could build and sign it all ... just
> kidding.
>
> Elijah and David, I just checked for the fun of it, your keys 39FA6421 and
> 4A47A3BD are not in the strong set of the web of trust. Dirk and I are two
> hops away (http://pgp.cs.uu.nl/mk_path.cgi?FROM=91B0D3B7&TO=BE9D5339).
>
> I also checked Gregor and found that has no key uploaded to a key server. This
> shed some new light on his question. Gregor, maybe you want to read through
> this: http://linuxreviews.org/howtos/gnupg/signingparty/
Thanks! Will study that!
G
More information about the pkg-bioc-devel
mailing list