Add GPG key transition statement

philwhineray · philwhineray · commit 954c636774f9 · 2018-08-10T07:32:38.000+01:00
diff --git a/.travis.yml b/.travis.yml
@@ -15,7 +15,7 @@ sudo: true
 # C includes autotools and make by default
 language: ruby
 rvm:
-  - 2.2
+  - 2.3
 #
 # Extra packages
 addons:
@@ -29,6 +29,7 @@ before_install:
  - ./.travis/decrypt-if-have-key ff0fa8642958
  #
  # Install nanoc and other dependencies
+ - gem install cri -v 2.10.1
  - gem install nanoc --version 3.8.0
  - gem install pandoc-ruby nokogiri
  # These have special meaning on the server, so disallow branches so named
diff --git a/README.md b/README.md
@@ -7,7 +7,8 @@ This tree contains the sources for the FireHOL website:
 The website is built using nanoc 3.8.x, pandoc and nokogiri. If you have
 ruby 1.9+ (on your machine you can install them with gem:
 
-    sudo gem install nanoc pandoc-ruby nokogiri
+    sudo gem install nanoc --version 3.8.0
+    sudo gem install pandoc-ruby nokogiri
 
 Note: building pandoc-ruby and nokogiri requires you to have installed
 the ruby headers (e.g. ruby1.9.1-dev Ubuntu 12.04 and ruby-dev on
diff --git a/content/files/transition-2018-08-10.txt b/content/files/transition-2018-08-10.txt
@@ -0,0 +1,65 @@
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA512
+
+OpenPGP Key Transition Statement for Philip Whineray
+
+I have created a new OpenPGP key and will be transitioning away from
+my old key.  The old key has not been compromised and will continue to
+be valid for some time, but I prefer all future correspondence to be
+encrypted to the new key, and will be making signatures with the new
+key going forward, including any software releases.
+
+The old key, which I am transitioning away from, is:
+
+pub   rsa2048/0x63DF1E44D829797E 2012-06-08 [SC]
+      Key fingerprint = 9CCE 9A8D 5328 FBD6 CE29  6DCC 63DF 1E44 D829 797E
+
+The new key, to which I am transitioning, is:
+
+pub   rsa4096/0xC406960213599237 2018-08-04 [SC] [expires: 2020-08-03]
+      Key fingerprint = 0762 9FF7 89EA 6156 012F  9F50 C406 9602 1359 9237
+
+The entire key may be downloaded from:
+
+  https://whineray.com/gpg/C406960213599237.asc
+
+To fetch the full new key from a public key server using GnuPG, run:
+
+  gpg --keyserver keys.gnupg.net --recv-key C406960213599237
+
+If you already know my old key, you can now verify that the new key is
+signed by the old one:
+
+  gpg --check-sigs C406960213599237
+
+If you'd like any further verification or have any questions about the
+transition please contact me directly.
+
+To verify the integrity of this statement:
+
+  wget -q -O- https://firehol.org/files/transition-2018-08-05.txt | gpg --verify
+
+Phil
+-----BEGIN PGP SIGNATURE-----
+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+=xevb
+-----END PGP SIGNATURE-----
