Skip to content

GitLab

  • Menu
Projects Groups Snippets
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
  • S sysadmin
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Issues 87
    • Issues 87
    • List
    • Boards
    • Service Desk
    • Milestones
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
  • Wiki
    • Wiki
  • Activity
  • Create a new issue
  • Issue Boards
Collapse sidebar
  • tails
  • sysadmin
  • Issues
  • #17816
Closed
Open
Created Feb 25, 2021 by Zen Fu@zenMaintainer

Monitor the validity of all OpenPGP keys shipped with Tails

Sysadmins currently do not have an automated monitoring of the validity of OpenPGP keys shipped with Tails. What currently happens is that developers get notified with 1 month in advance by the Tails test suite, and then they have to notify sysadmins to take care of this.

We should add such monitoring to the Tails infrastructure monitoring system.

This is the script that imports OpenPGP keys to keyrings used in tests.

Note that the current test in tails.git failed to notice one corner case scenario that already occurred: extending the validity of a master key but letting the encryption subkey expire (#17887 (comment 183587)). It would be sweet if the new monitoring check took care of this too.

Edited Feb 07, 2022 by intrigeri
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
Time tracking