--
You received this message because you are subscribed to the Google Groups "Clojure Dev" group.
To post to this group, send email to cloju...@googlegroups.com.
To unsubscribe from this group, send email to clojure-dev...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/clojure-dev?hl=en.
--
You received this message because you are subscribed to the Google Groups "Clojure Dev" group.
To view this discussion on the web visit https://groups.google.com/d/msg/clojure-dev/-/udEzzTzzb8YJ.
Like Stu, I'd be interested in the rationale for why other open source projects are doing what they are doing. It seems to me that the signed document is the important part.
People are not sending CAs by certified mail. Why should they have to cryptographically sign an e-mail? But IANAL.
Require that people print out the CA, sign it, scan the signed document, and email the scans to some published email address. Someone (e.g. me) could print out the scans on paper, mail them to the address listed on http://clojure.org/contributing, and from then on they go through the existing process.
--