[ostree] docs: Note not to put private keys in /usr/share/ostree

From: Colin Walters <walters src gnome org>
To: commits-list gnome org
Cc:
Subject: [ostree] docs: Note not to put private keys in /usr/share/ostree
Date: Sun, 8 Nov 2015 02:16:10 +0000 (UTC)

commit efdb4d8f443768e59529c299290bee8b1f8f93c3
Author: Colin Walters <walters verbum org>
Date:   Sat Nov 7 21:15:20 2015 -0500

    docs: Note not to put private keys in /usr/share/ostree
    
    https://bugzilla.gnome.org/show_bug.cgi?id=757524

 doc/ostree.xml |   10 ++++++----
 1 files changed, 6 insertions(+), 4 deletions(-)
---
diff --git a/doc/ostree.xml b/doc/ostree.xml
index b83177f..161ef0b 100644
--- a/doc/ostree.xml
+++ b/doc/ostree.xml
@@ -425,10 +425,12 @@ Boston, MA 02111-1307, USA.
         <title>GPG verification</title>
 
         <para>
-            OSTree supports signing commits with GPG.  The
-            set of trusted keys is stored as keyring files in
-            <filename>/usr/share/ostree/trusted.gpg.d</filename>.  Any key in
-            any keyring in that directory may be used to sign commits.
+            OSTree supports signing commits with GPG.  The set of
+            trusted public keys is stored as keyring files in
+            <filename>/usr/share/ostree/trusted.gpg.d</filename>.  Any
+            public key in a keyring file in that directory will be
+            trusted by the client.  No private keys should be present
+            in this directory.
         </para>
     </refsect1>

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]