Re: Why are in-person meetings required for the debian keyring?

Russell Stuart writes: > On Wed, 2015-02-11 at 11:17 -0800, Nikolaus Rath wrote: >> I'm a little confused about the need to meet in-person to get a >> signature that's acceptable for the Debian keyring. >> >> I believe that Debian packages are signed on upload to ensure that they >> have been pr

Re: How can I advertise to fill a Debian sys admin position?

[Dropping inappropriate CCs] On Thu, Feb 12, 2015 at 9:26 AM, Mark Laurence Donald Emerson wrote: > My organization needs to fill a sys admin position with someone proficient > in Debian. Can you direct me to a means to advertise for that position among > such individuals, such as an email list w

How can I advertise to fill a Debian sys admin position?

Hello, My organization needs to fill a sys admin position with someone proficient in Debian. Can you direct me to a means to advertise for that position among such individuals, such as an email list where it would be considered on topic, or a venue to publish a paid ad? Thank you. Mark Emers

Re: Why are in-person meetings required for the debian keyring?

On 2015-02-11 21:45, Paul Tagliamonte wrote: > I agree with Philip (as usual), but it's also the standard that we hold > ourselves to when signing someones OpenPGP key -- I can't assert > someone's identity matches without meeting them. I think this is spot on. This identity match ties a unique ke

Re: Why are in-person meetings required for the debian keyring?

On Wed, 2015-02-11 at 11:17 -0800, Nikolaus Rath wrote: > I'm a little confused about the need to meet in-person to get a > signature that's acceptable for the Debian keyring. > > I believe that Debian packages are signed on upload to ensure that they > have been prepared by a Debian Developer, be

Re: Why are in-person meetings required for the debian keyring?

> "Nikolaus" == Nikolaus Rath writes: Nikolaus> However, it seems to me that meeting someone in person Nikolaus> isn't actually verifying the relevant identity here. My Nikolaus> trust in a Debian developer is not based on him holding a Nikolaus> particular legal name, it is

Re: Why are in-person meetings required for the debian keyring?

❦ 11 février 2015 11:17 -0800, Nikolaus Rath  : > However, it seems to me that meeting someone in person isn't actually > verifying the relevant identity here. My trust in a Debian developer is > not based on him holding a particular legal name, it is in his history > of contributions. In other w

Re: Why are in-person meetings required for the debian keyring?

On Wed, Feb 11, 2015 at 08:36:54PM +, Philip Hands wrote: > Nikolaus Rath writes: > ... > > Following that argument, I think a key should be signed and included in > > the Debian keyring if it (the key) has a history of high quality > > contributions. Meeting the keyholder in person to look at

Re: Why are in-person meetings required for the debian keyring?

Nikolaus Rath writes: ... > Following that argument, I think a key should be signed and included in > the Debian keyring if it (the key) has a history of high quality > contributions. Meeting the keyholder in person to look at his passport > doesn't seem to add anything of particular value here. W

Why are in-person meetings required for the debian keyring?

Hello, I'm a little confused about the need to meet in-person to get a signature that's acceptable for the Debian keyring. I believe that Debian packages are signed on upload to ensure that they have been prepared by a Debian Developer, because Debian Developers are assumed to be trustworthy. Ho