[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Savannah-hackers-public] [task #15140] Automatically updating GPG keys

From: Tim Ruehsen
Subject: [Savannah-hackers-public] [task #15140] Automatically updating GPG keys when expired
Date: Thu, 3 Jan 2019 04:13:45 -0500 (EST)
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:64.0) Gecko/20100101 Firefox/64.0


                 Summary: Automatically updating GPG keys when expired
                 Project: Savannah Administration
            Submitted by: rockdaboot
            Submitted on: Thu 03 Jan 2019 10:13:43 AM CET
         Should Start On: Thu 03 Jan 2019 12:00:00 AM CET
   Should be Finished on: Thu 03 Jan 2019 12:00:00 AM CET
                Category: None
                Priority: 5 - Normal
                  Status: None
                 Privacy: Public
        Percent Complete: 0%
             Assigned to: None
             Open/Closed: Open
         Discussion Lock: Any
                  Effort: 0.00



Manually refreshing/updating one's GPG key at Savannah is a manual process and
easily forgotten.
I wonder if there is any security impact to automatically fetch expired GPG
keys from a public keyserver. Given that the key itself didn't change and
isn't revoked.

E.g. my GPG key expires every 2 years. Shortly before it does I refresh the
expire time and upload the key to the keyserver infrastructure. It is tedious
to remember all the sites that need a manual update as well (like Savannah).
It took a bug report against GNU Wget to update my key today - it was expired
since 2016 !


Reply to this item at:


  Message sent via Savannah

reply via email to

[Prev in Thread] Current Thread [Next in Thread]