GnuPG_key.mdwn 2.72 KB
Newer Older
1
2
[[!meta title="GnuPG key pairs"]]

3
Tails developers maintain several OpenPGP key pairs.
4
5
6
7
8
9
10
11
12
13
14
15

[[!toc levels=2]]

Mailing-list key
================

Purpose
-------

### Encryption

This key has an encryption subkey. Please use it to encrypt email sent
16
to the core developers encrypted mailing-list: <tails@boum.org>.
17
18
19

### Signature

20
This key also has the capability to sign and certify. Until Tails
21
22
23
24
0.5 and 0.6~rc3, released images were signed by this key. This purpose
is now deprecated: further releases will be signed by a dedicated,
safer signing key. As of 2010 October 7th, our mailing-list key
signature only means our mailing-list software checked the signed
25
content was originally OpenPGP-signed by a Tails core developer.
26
27
28
29
30
31

Policy
------

The secret key material and its passphrase are stored on the server
that runs our encrypted mailing-list software and on systems managed
32
by core Tails developers.
33

34
35
This means people other than Tails developers are in a position to
use this secret key. Tails developers trust these people enough to
36
37
38
39
40
41
rely on them for running our encrypted mailing-list, but still: this
key pair is managed in a less safe way than our signing key.

Key details
-----------

42
	pub  4096R/F93E735F 2009-08-14 Tails developers (Schleuder mailing-list) <tails@boum.org>
43
	      Key fingerprint = 09F6 BC8F EEC9 D8EE 005D  BAA4 1D29 75ED F93E 735F
44
45
46
	uid                            Amnesia <amnesia@boum.org>
	uid                            T(A)ILS developers (Schleuder mailing-list) <amnesia@boum.org>
	sub  4096R/E89382EB 2009-08-14 [expires: 2014-08-13]
47

48
49
50
51
52
How to get the public key?
--------------------------

There are multiple ways to get this OpenPGP public key:

53
- download it from this website: [[!tails_website amnesia.asc]]
54
- fetch it from your favourite keyserver
55
- send an email to <tails-sendkey@boum.org>.
56
57
58
59
60
61
62
63
64
65
66
67

Signing key
===========

Purpose
-------

This key only has the capability to sign and certify: it has no
encryption subkey.

Its only purpose is:

68
69
- to sign Tails released images (starting with 0.6)
- to certify other cryptographic public keys needed for Tails
70
71
72
73
74
75
  development.

Policy
------

The secret key material will never be stored on an online server or on
76
systems managed by anyone else than Tails core developers.
77
78
79
80
81
82

Key details
-----------

	pub   4096R/BE2CD9C1 2010-10-07 [expires: 2012-10-06]
	      Key fingerprint = 0D24 B36A A9A2 A651 7878  7645 1202 821C BE2C D9C1
83
	uid                  Tails developers (signing key) <tails@boum.org>
84
85
86
87
	uid                  T(A)ILS developers (signing key) <amnesia@boum.org>

How to get the public key?
--------------------------
88

89
There are multiple ways to get this OpenPGP public key:
90

Tails developers's avatar
Tails developers committed
91
- download it from this website: [[!tails_website tails-signing.key]]
92
- fetch it from your favourite keyserver.