Created attachment 35859 [details] GPG public key My fd.o account is "currojerez", I'm sorry to say that I've lost my old GPG private key in a catastrophic HDD failure. New one attached, and sorry for causing trouble.
Hi, as you can imagine, we are a bit reluctant to just replace GPG keys without some indication that you are who you say you are and not somebody trying to get access to your account. So, could you please do some of: - Get your key signed by someone else at fd.o - Indicate which groups you have access to on fd.o - Indicate 3 files in your home directory - Anything else which verifies who you are.
(In reply to comment #1) > Hi, > > as you can imagine, we are a bit reluctant to just replace GPG keys without > some indication that you are who you say you are and not somebody trying to get > access to your account. > > So, could you please do some of: > > - Get your key signed by someone else at fd.o Unfortunately most fd.o people I know don't seem to be willing to sign any GPG keys without a physical fingerprint exchange (Actually I think the word is "fortunately", IMHO that's good practice). > - Indicate which groups you have access to on fd.o I have access to xorg, mesa and nouveau. > - Indicate 3 files in your home directory There're exactly 0 files besides a couple of config files and the publicly accessible stuff (and that's just the stuff under public_html/, the "tvdump" git repo and my mesa tree). > - Anything else which verifies who you are. As you can see I've revoked my previous key [1], of course that doesn't imply that I'm the same person, but at least it suggests that there's some truth in the story I've told. Thanks for your effort. [1] http://pgp.mit.edu:11371/pks/lookup?search=currojerez&op=index
Ok, I've updated your GPG key now, so you should be able to reset the SSH key yourself using the mail interface.
Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.