Release process++.

wiki/src/contribute/release_process.mdwn

@@ -240,6 +240,23 @@ If at freeze time:
    as detailed on the [[documentation for
    translators|contribute/how/translate]].
 
+Import the signing key
+======================
+
+You should never import the Tails signing key into your own keyring,
+and a good practice is to import it to a tmpfs so no key material is
+written to disk:
+
+    export GNUPGHOME=$(mktemp -d)
+    sudo mount -t tmpfs tmpfs "$GNUPGHOME"
+    gpg --homedir $HOME/.gnupg --export $TAILS_SIGNATURE_KEY | gpg --import
+    gpg --import path/to/private-key
+
+Let's also ensure that strong digest algorithms are used for our
+signatures, like the defaults we set in Tails:
+
+    cp config/chroot_local-includes/etc/skel/.gnupg/gpg.conf "$GNUPGHOME"
+
 Tag the release in Git
 ======================