diff options
| author | Owen Jacobson <owen.jacobson@grimoire.ca> | 2014-10-23 21:36:05 -0400 |
|---|---|---|
| committer | Owen Jacobson <owen.jacobson@grimoire.ca> | 2014-10-23 21:36:05 -0400 |
| commit | 9669cb7fa1c028bcf78a7a08b93a07dc42ed9736 (patch) | |
| tree | 5d821b682aa6af96bed2291e98d0344262c88799 /wiki/devops | |
| parent | dbf6d2be65b12418cbf8ac4e37fc191743e8813b (diff) | |
Signing on CI is hard.
Diffstat (limited to 'wiki/devops')
| -rw-r--r-- | wiki/devops/continuous-signing.md | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/wiki/devops/continuous-signing.md b/wiki/devops/continuous-signing.md new file mode 100644 index 0000000..422ec49 --- /dev/null +++ b/wiki/devops/continuous-signing.md @@ -0,0 +1,7 @@ +# Code Signing on Build Servers + +We sign things so that we can authenticate them later, but authentication is +largely a conscious function. Computers are bad at answering "is this real". + +Major signing systems (GPG, jarsigner) require presentation of credentials at +signing time. CI servers don't generally have safe tools for this. |