blob: d224d9552c26de3ac0411b7cc37e1031174100d9 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
|
README for code.liw.fi-keyring
========================================================================
I publish my various free software projects on a site called
code.liw.fi. Part of that is an APT repository for .deb packages. That
repository is digitally signed using OpenPGP. Thie package contains
the public key necessary to check the signature. By installing this
package, APT know of the key and use to check.
When it's time to rotate the signing key, I will first generate a new
key, and add it to this package. Then I wait for some time to allow
everyone who uses code.liw.fi to upgrade, perhaps a month or two. I
will then start using the new signing key, and drop the old key from
the package. This way, as long as everyone upgrades to the new version
of this package sufficiently frequently (more than once month), nobody
else needs to do any work to deal with a new key.
(Debian itself uses a similar setup.)
Legalse
------------------------------------------------------------------------
There is no copyright on this package. It's way too simple to be
copyrighted. Also, most of the data is the public key, which is
generated from random numbers. Also not copyrightable. If you want to
make your own package based on this, go right ahead. You'll need to
use your own key, of course.
You can't have my private key, sorry.
|
