Expert verification instructions no longer work due to expiry of Stefano Zacchiroli's key
Stefano’s key 0x9C31503C6D866396 expired on 2020-02-07. Thus, when the instructions on https://tails.boum.org/install/expert/usb/index.en.html are followed, “gpg —keyid-format 0xlong —check-sigs A490D0F4D311A4153E2BB7CADBB802B258ACD84F” will not display the signature.
There are other Debian developers who have signed the key, so one of these could be used instead. Alternatively, Stefano could sign it with a new key. Whatever solution is chosen, the page will need to be updated.
#5 Updated by sajolida 2020-03-18 18:57:34
- Status changed from Duplicate to In Progress
- Assignee set to sajolida
- Priority changed from High to Elevated
- Target version set to Tails_4.5
I asked Chris Lamb who’s key seems to have no expiry date in the Debian keyring from stable:
root@amnesia:~# gpg --keyring=/usr/share/keyrings/debian-keyring.gpg --list-keys lamby pub rsa4096 2009-07-12 [SC] C2FE4BD271C139B86C533E461E953E27D4311E58 uid [ unknown] Chris Lamb <firstname.lastname@example.org> uid [ unknown] Chris Lamb <email@example.com> uid [ unknown] Chris Lamb <firstname.lastname@example.org> sub rsa4096 2009-07-12 [E]
#6 Updated by sajolida 2020-03-21 21:12:44
- Status changed from In Progress to Needs Validation
- Assignee changed from sajolida to intrigeri
Here is a branch that replaces zack’s key with lamby’s key.
I’m sure @cbrownstein could review this but, since there’s no English involved and it’s more about trust and not fucking up voodoo GPG stuff, I thought that it might be better if a Release Manager or Foundations Team member did it.