Hi, Quoting Ian Jackson (2016-08-19 14:25:52) > (Would it not be possible to generate the key inside the chroot? I > guess there are probably other problems with that.)
that would require lots of time and entropy - unless somebody knows how to trick gpg to generate a private/public key pair from a dummy entropy source. A better approach would probably be to copy everything that needs signing from the chroot to the host, do the signing there and then copy the signatures back into the chroot. But this still needs somebody to implement and test it... Thanks! cheers, josch
signature.asc
Description: signature
