Difference between pages "Social Events/Pre-conference dinner" and "Key signing"

From LCA2014 Delegate Wiki
(Difference between pages)
Jump to: navigation, search
 
(Submitting your key)
 
Line 1: Line 1:
* '''When:''' Evening of Sat 4th or Sun 5th (TBC depending on interest and numbers)
+
= Key signing party =
Please put your name down on the attached page if you're interested
+
We should have a key signing party, up for suggestions on where and when and what format
* Interested in Sat 4th
+
** Jessica Smith
+
** Sharon Harnett
+
** Bianca Gibson
+
** Nick Clifford
+
** [[Steven Ellis]]
+
** [[Cherie Ellis]]
+
** Lisa and Andrew Sands
+
** Karl-Johan Karlsson
+
  
* Interested in Sun 5th
+
 
** Jessica Smith
+
== Before the event ==
** Sharon Harnett
+
 
** Bianca Gibson
+
You need a gpg key to start, create one now!
** Chris Neugebauer
+
You might as well make it with as big a key size as possible.
** Jamie Birse
+
<pre>gpg --gen-key
** Ben Savage
+
gpg --list-secret-keys
** Mike Fabre ([https://twitter.com/mijofa1 @mijofa1], mijofa on IRC)
+
gpg --fingerprint FA9EC035</pre>
** Benno Rice ([https://twitter.com/jeamland @jeamland], Holocaine on IRC)
+
 
** Nick Clifford
+
 
** David Bell ([https://twitter.com/dtbell91 @dtbell91], dtbell91 on IRC)
+
== Submitting your key ==
** Eyal Lebedinksy
+
 
** Tim Connors (tim.w.connors@gmail.com)
+
Currently nothing has been decided, please add suggestions below.
** [[Steven Ellis]]
+
* create a wiki page containing your fingerprints
** [[Cherie Ellis]]
+
** [[https://lca2014.linux.org.au/wiki/User:Daniel_sobey Daniel Sobey]]  
** Lisa and Andrew Sands
+
* Some other tool, edit this page and we may use it
** [https://twitter.com/fukawi2 Phil Smith]
+
 
** Mark Walkom
+
{| class="wikitable"
** Joel Wirāmu Pauling
+
|+ people participating in identification exchange
** [[Craige McWhirter]]
+
! Real Name !! Key Id !! Key Fingerprint !! Preferred E-mail Address
** [[Russell Coker]]
+
|-
** Adam Baxter (+1) (please talk to me about wheelchair accessibility of the chosen venue - I'll try to be as flexible as possible - linuxconf14@voltagex.org)
+
 
** [[Thomas Petazzoni]]
+
|-
** [[Katie Miller]]
+
| J Random Person  || 0x0000000000000000 || FFFF FFFF FFFF FFFF FFFF  FFFF FFFF FFFF FFFF FFFF || jrp@example.com
** [[Simon Lyall]]
+
 
** [[Lin Nah]]
+
 
** [[Liz Quilty]]
+
|-
** Karl-Johan Karlsson
+
| [[https://lca2014.linux.org.au/wiki/User:Mark_Atwood Mark Atwood]]  || 0x5BB3D38332608126 || D37B E0BF 09D3 C69B DDAC  78B5 5BB3 D383 3260 8126 || me@mark.atwood.name
** [[Mike O'Connor]]
+
 
** [[Tim Ansell]]
+
|-
 +
| [[https://lca2014.linux.org.au/wiki/User:Daniel_sobey Daniel Sobey]]    ||  0xFA9EC035 ||  || dns@dns.id.au
 +
|-
 +
| [[https://lca2014.linux.org.au/wiki/User:Daniel_sobey Daniel Sobey]]   ||  0x7E706939 ||  || dns@dns.id.au
 +
|-
 +
| [[https://lca2014.linux.org.au/wiki/User:Daniel_sobey Daniel Sobey]]   ||  0x2EC08895 ||  || dns@dns.id.au
 +
|-
 +
 
 +
 +
|}
 +
 
 +
== At the event ==
 +
We will need someone to collate the keys and print them out.
 +
Please let us know how many we should print and where to print them.
 +
 
 +
What we did last year was go to a lecture theatre with a projector.
 +
Each person stands up, shows their photo id and read their fingerprint aloud.
 +
printouts of everyone's fingerprints were provided so you can tick off as you go
 +
This worked ok but took a long time to get through everyone.
 +
 
 +
 
 +
 
 +
== Ad hoc Signing ==
 +
 
 +
Put your fingerprint on a piece of paper and hand it out to people.
 +
No need to do it formally just swap as you meet.
 +
 
 +
Things to watch out for:
 +
* does it match thair name
 +
* Does the person have a key with that fingerprint, do the numbers match.
 +
* know that anyone can generate a key and claim an email address
 +
* if someone can be bothered they can keep trying to generate a key with the first 8 digits the same as another key but getting the whole fingerprint is nearly impossible
 +
 
 +
 
 +
== When you get home ==
 +
after the event you should have notes of who to trust the next thing to do is sign the key.
 +
You can individually sign each key, export the signature and send it to them.
 +
 
 +
[https://wiki.debian.org/caff caff] is a tool that automates the signing a little.
 +
It will sign and send an email (encrypted if possible) containing the signature.
 +
It requires some setup but it does make things easier.

Revision as of 11:07, 2 January 2014

Contents

Key signing party

We should have a key signing party, up for suggestions on where and when and what format


Before the event

You need a gpg key to start, create one now! You might as well make it with as big a key size as possible.

gpg --gen-key
gpg --list-secret-keys
gpg --fingerprint FA9EC035


Submitting your key

Currently nothing has been decided, please add suggestions below.

  • create a wiki page containing your fingerprints
  • Some other tool, edit this page and we may use it
people participating in identification exchange
Real Name Key Id Key Fingerprint Preferred E-mail Address
J Random Person 0x0000000000000000 FFFF FFFF FFFF FFFF FFFF FFFF FFFF FFFF FFFF FFFF jrp@example.com


[Mark Atwood] 0x5BB3D38332608126 D37B E0BF 09D3 C69B DDAC 78B5 5BB3 D383 3260 8126 me@mark.atwood.name
[Daniel Sobey] 0xFA9EC035 dns@dns.id.au
[Daniel Sobey] 0x7E706939 dns@dns.id.au
[Daniel Sobey] 0x2EC08895 dns@dns.id.au

At the event

We will need someone to collate the keys and print them out. Please let us know how many we should print and where to print them.

What we did last year was go to a lecture theatre with a projector. Each person stands up, shows their photo id and read their fingerprint aloud. printouts of everyone's fingerprints were provided so you can tick off as you go This worked ok but took a long time to get through everyone.


Ad hoc Signing

Put your fingerprint on a piece of paper and hand it out to people. No need to do it formally just swap as you meet.

Things to watch out for:

  • does it match thair name
  • Does the person have a key with that fingerprint, do the numbers match.
  • know that anyone can generate a key and claim an email address
  • if someone can be bothered they can keep trying to generate a key with the first 8 digits the same as another key but getting the whole fingerprint is nearly impossible


When you get home

after the event you should have notes of who to trust the next thing to do is sign the key. You can individually sign each key, export the signature and send it to them.

caff is a tool that automates the signing a little. It will sign and send an email (encrypted if possible) containing the signature. It requires some setup but it does make things easier.