Time to resurrect multi-key signatures in RPM?

Nils Philippsen nils at redhat.com
Thu Aug 28 08:49:04 UTC 2008

We already discussed that in private, but let me rehash this for the

On Wed, 2008-08-27 at 22:12 +0000, Bojan Smojver wrote:
> Nils Philippsen <nils <at> redhat.com> writes:
> > Not to fan the flames, but last time they did just that . And I'm
> > pretty sure they'll do it again, possibly because the IDs in question
> > are very hard to fake.
> May we all know the name of this bank? Just so that we can stay away from such
> backyard operators.

Just about every bank in Germany would operate like this. After all, we
do have a national ID that is hard enough to fake(*) and if you present
it to entities like banks, they usually make a copy and can verify the
data on the ID with the "Einwohnermeldeamt" (possibly "residents
registration office").

(*): http://www.bundesdruckerei.de/en/products/products_idSystem/idSystem_documents/documents_passport/passport_secFeatIdCard.html

Before someone uses terms like "Orwellian", "1984" and so on, there are
some very tangible benefits from how this system is employed here: I
don't have to jump through hurdles to vote in elections, instead of
having to register for voting I'm invited to do that (by my
"Einwohnermeldeamt") every time there is one, since the day I turned 18.
It's very easy for me to prove (beyond reasonable doubt) that I am who I
am where that is necessary. Note that the police don't have the need to
know who you are without reasons. And it's quite comforting to know that
in situations where they can demand it, the can't make up their own
rules what they accept as ID and what not.

Nils Philippsen      "Those who would give up Essential Liberty to purchase 
Red Hat               a little Temporary Safety, deserve neither Liberty
nils at redhat.com       nor Safety."  --  Benjamin Franklin, 1759
PGP fingerprint:      C4A8 9474 5C4C ADE3 2B8F  656D 47D8 9B65 6951 3011

More information about the fedora-devel-list mailing list