On Thu, May 28, 2009 at 03:43:09PM +1000, Felipe Sateler wrote:
> Michael Banck wrote:
>
> > The SSH public key is attached, the key fingerprint is
> > 0f:95:27:cf:9a:b2:88:bf:d7:10:24:b4:51:f9:7a:ef.
>
> I think it would be useful to have a new package with the ssh public key
> fingerprints of all accessible debian machines, possibly signed by some DSA
> member (to detect local tampering). It would ease a trust path from the user
> to the machine. Having to look up these messages (if they exist in the first
> place), and creating a trust path from yourself to the poster when one might
> need to connect is suboptimal I think.
>
Note that all those keys are available on:
https://db.debian.org/machines.cgi
--
Aurelien Jarno GPG: 1024D/F1BCDB73
aurel...@aurel32.net http://www.aurel32.net
--
To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
