https://redmine.replicant.us/https://redmine.replicant.us/favicon.ico?15984615062021-05-03T16:05:15ZReplicantReplicant - Issue #2248: Enable more easy updating of release keyshttps://redmine.replicant.us/issues/2248?journal_id=90882021-05-03T16:05:15ZDenis 'GNUtoo' CarikliGNUtoo@cyberdimension.org
<ul></ul><p>Wolfgang wiedmeyer's key and me (in a bigger extent) have chosen to have expiration dates on our GPG keys.</p>
<p>This is a really good practice for security and it at least would enable me to more easily cope with the loss of my key: if I loose access to it at some point it will just expire and I will stop receiving mails that I can't decrypt anymore.</p>
<p>However we currently publish key the way they are at the time of the releases.</p>
<p>We probably need to create a new directory with all the public gpg keys having signed releases and keep updating them somehow and point to the last version of the key in the installation instructions.</p>