Launchpad itself

How generated PPA keys are stored and protected

Asked by Alexandre Tuleu

I would like to know how PPA generated key are stored and protected in launchpad. I would also like to know who actually is in position to use a PPA key to sign anything.

I am pretty a debutant in security issue (I just now the basics about assymetric crypting / signing ). And I am interested in how all the stuff is protected in launchpad.

Question information

Language:
English Edit question
Status:
Answered
For:
Launchpad itself Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:
Revision history for this message
John A Meinel (jameinel) said : 		#1

You may want to read:
  https://help.launchpad.net/Packaging/PPA

And certainly you can inspect the source for launchpad itself:
  https://code.launchpad.net/~launchpad-pqm/launchpad/devel

As I understand it, the keys are generated and saved in the database. Only the bots that do the ppa builds actually have access to the private keys. There isn't a human in the loop.

Can you help with this problem?

Provide an answer of your own, or ask Alexandre Tuleu for more information if necessary.

To post a message you must log in.