Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
ssh public keys for the full time identity group at mozilla
branch: master
Failed to load latest commit information.
.gitignore git ignore backup files
6a68.pub
README.md make readme a markdown file
callahad.pub
chilts.pub Add public key for chilts
ckarlof.pub finally adding ckarlof
dcoates.pub add dcoates public key
ewong.pub kthiessen, ewong
francois.pub
gene1wood.pub adding gene1wood
jbonacci.pub jbonacci's key
jrgm.pub add some keys
kparlante.pub kparlante's key
kthiessen.pub kthiessen, ewong
mostlygeek.pub added my pub key for bwong
nchapman.pub Added nchapman.
opsec.pub Added opsec keys
pdehaan.pub Adding pdehaan.pub key
philbooth.pub Public key for philbooth.
relud.pub add relud pubkey
rfkelly.pub adding rfkelly pubkey
rpappalardo.pub Create rpappalardo.pub
seanmonstar.pub add some keys
spenrose.pub added spenrose
stomlinson.pub add some keys
vladikoff.pub Create vladikoff.pub
zcarter.pub fixing zcarters key

README.md

WARNING

Never, ever just clone this repo and trust the pubkeys! Use the last-known good SHA instead. See the How to use section below.

The problem

The Identity team builds test/dev tools using one-off AWS instances. Some of these tools become indispensable, yet, don't warrant being monitored and managed by ops.

In the past, tools have broken down while their creators were on vacation or unavailable, leading to bummer-times for everybody involved--either sshing into a box while on PTO, or the tool just being borked for days.

The solution

This repo contains public keys for the Identity core crew.

If toolmakers upload their fellow devs' pubkeys to a long-lived awsbox, anybody can reboot or troubleshoot a downed machine when its creator is out on vacation.

Yay vacation.

How to use

Only use the pubkeys from the latest SHA which has been verified as good by the core Identity team. (This happens in email, not in github.)

When to use

If you create a tool on an awsbox that someone might need to maintain while you're away, then you can upload the identity-pubkeys to that awsbox and relax.

How to update with new keys

If people join the team and you add keys to this repo, you must notify the team via the mailing list and ask everyone to verify their keys are correct in the version identified by the new HEAD SHA.

We trust github and git because you can't modify the keys without also changing the SHA.

Something went wrong with that request. Please try again.