Build Bitcoin-ABC :: Diffs :: Bitcoin-ABC Diff Testing started.

Not sure if it matters, but the key was not generated in ASCII mode. I assume that's why there's no preview in the diff section.

Build Bitcoin-ABC :: Diffs :: Bitcoin-ABC Diff Testing passed.

Build Bitcoin-ABC :: Diffs :: Bitcoin-ABC Diff Testing started.

Build Bitcoin-ABC :: Diffs :: Bitcoin-ABC Diff Testing passed.

We should do this instead:

gpg --keyserver hkp://subset.pool.sks-keyservers.net --send-keys 7A55A44F3A3239827C8A594E7D3958C44427674A
gpg: sending key 7D3958C44427674A to hkp://subset.pool.sks-keyservers.net

Then per https://github.com/bitcoin/bitcoin/tree/master/contrib/gitian-keys

We can have people run this:

while read fingerprint keyholder_name; do gpg --keyserver hkp://subset.pool.sks-keyservers.net --recv-keys ${fingerprint}; done < ./keys.txt

This enables having cold storage *revocation* keys, in the event that one of our keys is compromised. Also, this enables cross-signing other people's keys. See: https://lwn.net/Articles/461236/

See:

gpg --fingerprint <key ID>
gpg --keyserver hkp://subset.pool.sks-keyservers.net --recv-key <their key ID>
gpg -u <your key ID> --sign-key <their key ID>
gpg --keyserver hkp://subset.pool.sks-keyservers.net --send-key <their key ID>
gpg --keyserver hkp://subset.pool.sks-keyservers.net --recv-key <your key ID>

I'm not sure which keyserver we should use, both

@schancel Are you suggesting we do that instead of adding our keys to the repo? I think having it in repo is a good idea no matter what else we use in addition.

I don't agree. Having them here is bad UX. People will never check to see if revocation signatures have been issued.

Some additional useful information here: https://wiki.debian.org/Keysigning

Sending the signature to the server didn't seem to work when I did it.