doc: Suggest keys.openpgp.org as keyserver in SECURITY.md #23466

pull real-or-random wants to merge 1 commits into bitcoin:master from real-or-random:202111-keyserver changing 1 files +1 −1
  1. real-or-random commented at 11:29 am on November 8, 2021: member
    --recv-keys without a --keyserver arg simply failed for me on a fresh Arch Linux installation, so I think it’s a good idea to suggest a keyserver. OpenPGP ecosystem is broken in a number of ways, so the right way to approach this issue has some potential for bikeshedding. But the only thing that this PR does is to keep SECURITY.md in line with the instructions for builder keys, where there was agreement on switching to keys.openpgp.org (#22688).
  2. doc: Suggest `keys.openpgp.org` as keyserver in SECURITY.md 
    This is in line with 4c43b7d41d11072f382f938379d21cd2e0bcbb47 from
PR #22688.
    90f1f849e9
  3. real-or-random commented at 11:29 am on November 8, 2021: member
    A related issue is that I couldn’t find an unexpired version of @sipa’s key, neither on keys.openpgp.org (which does not sync with other servers) nor somewhere else.
  4. MarcoFalke commented at 11:38 am on November 8, 2021: member
    review ACK 90f1f849e9f5a0c1855b72824af38b9aa24d5287
  5. MarcoFalke commented at 11:39 am on November 8, 2021: member
    Wouldn’t it make sense to update https://bitcoincore.org/en/contact/ as well, assuming that keyserver.ubuntu.com is non-functioning?
  6. DrahtBot added the label Docs on Nov 8, 2021
  7. real-or-random commented at 11:45 am on November 8, 2021: member

    Wouldn’t it make sense to update bitcoincore.org/en/contact as well, assuming that keyserver.ubuntu.com is non-functioning?

    keyserver.ubuntu.com is functioning but I think we should just keep the keyserver consistent everywhere.

  8. MarcoFalke commented at 11:58 am on November 8, 2021: member
    I think they don’t accept any key updates, do they?
  9. laanwj commented at 12:03 pm on November 8, 2021: member

    Review ACK 90f1f849e9f5a0c1855b72824af38b9aa24d5287

    keyserver.ubuntu.com is functioning but I think we should just keep the keyserver consistent everywhere.

    I agree. Ideally we would not have to suggest any keyserver. It’s frustrating enough to have to play keyserver ping-pong every time when yet another part of PGP infrastructure goes down, but it seems keys.openpgp.org works for now so let’s use it consistently.

    BTW instead of adding it in the command line every time you could also add

    0keyserver hkps://keys.openpgp.org

    in ~/.gnupg/gpg.conf

  10. hebasto approved
  11. hebasto commented at 1:29 pm on November 8, 2021: member
    ACK 90f1f849e9f5a0c1855b72824af38b9aa24d5287, agree with arguments above.
  12. hebasto deleted a comment on Nov 8, 2021
  13. Zero-1729 commented at 3:10 pm on November 8, 2021: contributor

    ACK 90f1f849e9f5a0c1855b72824af38b9aa24d5287

    Makes sense to keep the keyservers consistent.

  14. real-or-random referenced this in commit 85180b83b7 on Nov 8, 2021
  15. real-or-random referenced this in commit 3b157c48ed on Nov 8, 2021
  16. fanquake referenced this in commit c702d1fefd on Nov 8, 2021
  17. fanquake commented at 10:48 pm on November 8, 2021: member
    This has been merged.
  18. fanquake closed this on Nov 8, 2021
  19. real-or-random referenced this in commit c74a7b7e51 on Nov 9, 2021
  20. real-or-random referenced this in commit d1492b6fb2 on Nov 9, 2021
  21. sidhujag referenced this in commit cf315e0d3d on Nov 9, 2021
  22. harding referenced this in commit e0906892db on Nov 9, 2021
  23. PastaPastaPasta referenced this in commit 8bcfec2167 on Apr 3, 2022
  24. DrahtBot locked this on Nov 8, 2022


real-or-random MarcoFalke laanwj hebasto Zero-1729 fanquake

Labels
Docs

github-metadata-mirror

This is a metadata mirror of the GitHub repository bitcoin/bitcoin. This site is not affiliated with GitHub. Content is generated from a GitHub metadata backup.
generated: 2024-12-22 03:12 UTC
This site is hosted by @0xB10C
More mirrored repositories can be found on mirror.b10c.me