Question on when to use SIGN_KEY when building Qubes
9 views
Skip to first unread message
Public Email Account
Apr 20, 2019, 8:14:52 PM4/20/19
to qubes...@googlegroups.com
Excuse if this is already asked or documented somewhere. I was not able to find.
I am 80 year old grandma and still learning computers so please dont flame me
too much. I am still learning. I ask questions so I can prevent from arriving to
error on false assumptions.
I am building Qubes from source code using the Qubes Builder. Following
directions at https://www.qubes-os.org/doc/qubes-iso-building/ there is the
option
"Or for a fully signed build (this requires setting
SIGN_KEY in builder.conf):"I am making a .iso just for myself to use as my personal computer operating
system. What scenarios necessitate setting a signing key? Should I set a signing
key if I am only using the generated Qubes iso just for myself? Is there any security
risk of anything if I dont set a signing key if I plan to just simply gpg sign a hash of
my generated iso?
Thank you.
Granny
Sent with ProtonMail Secure Email.
awokd
Apr 23, 2019, 4:58:19 AM4/23/19
to Public Email Account, qubes...@googlegroups.com
'Public Email Account' via qubes-users:
If it's something only you will be using, I see no need to set a signing
key. You might want to double-check on qubes-devel in case I am missing
something.
key. You might want to double-check on qubes-devel in case I am missing
something.
Reply all
Reply to author
Forward
0 new messages