[Popcon-developers] Bug#729097: enabled by default encryption breaks multi-server submission unless they share the same keyo
Bill Allombert
ballombe at debian.org
Sun Nov 10 14:06:10 UTC 2013
On Fri, Nov 08, 2013 at 04:35:35PM -0800, Yaroslav Halchenko wrote:
> Package: popularity-contest
> Version: 1.60
> Severity: important
>
> For NeuroDebian we just made use of the feature that SUBMITURLS could list
> multiple collection sites. With 1.60 encrypt default 'maybe' enables
> compression using popcon.debian.org key thus breaking processing upon receival
> by neuro.debian.net's site which doesn't have the key available.
Hello Yaroslav,
It is discourageing nobody says anything during the long comment period and
now you report this.
> What resolution would you recommend?
>
> - disabling encryption on such setups (would require a round of upgrades on
> neurodebian installations.
This is the only option if neuro.debian.net is not able to process
encrypted emails.
> - asking/getting/using your private GPG key you use for encryption?
No, thought I could occasionally decrypt your files, it is not a long term
solution.
> - anything else for a quick workaround?
>
> I guess ideal "fix" would be to be able to control encryption options (KEYRING,
> KEYID, ENCRYPT) per each of submiturl's... heh heh
ENCRYPT should be global because it does not make sense to send
the data in clear to some hosts and encrypted to the others.
On the other hand, gpg allows to encrypt with several keys at once, so
we should allow KEYRING and KEYID to be lists of KEYRING/KEYID.
Cheers,
--
Bill. <ballombe at debian.org>
Imagine a large red swirl here.
More information about the Popcon-developers
mailing list