diff options
author | Sean Whitton <spwhitton@spwhitton.name> | 2017-05-22 13:13:06 +0100 |
---|---|---|
committer | Sean Whitton <spwhitton@spwhitton.name> | 2017-05-22 13:13:06 +0100 |
commit | 4190149cd01da73eac211230bdfe81dd104c42aa (patch) | |
tree | 5b725c97ad9c0d8bdeaad94f063730982dd54c44 /debug-me.1 | |
parent | 8b450615d0d33cca4d14c6abf59f893d13a1393a (diff) | |
parent | d27100f7d71a8cf9312e9bb7628c791e0d246917 (diff) | |
download | debug-me-4190149cd01da73eac211230bdfe81dd104c42aa.tar.gz |
Merge tag '1.20170520'
tagging package debug-me version 1.20170520
# gpg: Signature made Sat 20 May 2017 22:31:39 BST
# gpg: using RSA key 28A500C35207EAB72F6C0F25DB12DB0FF05F8F38
# gpg: Good signature from "Joey Hess <joeyh@joeyh.name>" [full]
# Primary key fingerprint: E85A 5F63 B31D 24C1 EBF0 D81C C910 D922 2512 E3C7
# Subkey fingerprint: 28A5 00C3 5207 EAB7 2F6C 0F25 DB12 DB0F F05F 8F38
Diffstat (limited to 'debug-me.1')
-rw-r--r-- | debug-me.1 | 13 |
1 files changed, 10 insertions, 3 deletions
@@ -14,13 +14,16 @@ problem. Making your problem their problem gets it fixed fast. A debug-me session is logged and signed with the developer's GnuPG key, producing a chain of evidence of what they saw and what they did. So the developer's good reputation is leveraged to make debug-me secure. +If you trust a developer to ship software to your computer, +you can trust them to debug-me. .PP When you start debug-me without any options, it will connect to a debug-me server, and print out an url that you can give to the developer to get them connected to you. Then debug-me will show you their GnuPG key and who -has signed it. If the developer has a good reputation, you can proceed -to let them type into your console in a debug-me session. Once the -session is done, the debug-me server will email you the signed +has signed it, and will let you know if they are a known developer +of software on your computer. If the developer has a good reputation, you +can proceed to let them type into your console in a debug-me session. Once +the session is done, the debug-me server will email you the signed evidence of what the developer did in the session. .PP It's a good idea to watch the debug-me session. The developer should be @@ -101,6 +104,10 @@ exits. .IP "~/.debug-me/log/remote/" When using debug-me to connect to a remote session, the session will be logged to here. +.UP "/usr/share/debug-me/keyring/*.gpg" +When verifying a developer's gpg key, debug-me checks if it's listed in +the keyrings in this directory, which can be provided by software installed +on the computer. .SH SEE ALSO <https://debug-me.branchable.com/> .PP |