Opened 7 years ago

Closed 4 years ago

#1961 closed task (fixed) code signing permission

Reported by: jive Owned by: sac@…
Priority: normal Milestone:
Component: SysAdmin Keywords:


This is a request for the SAC to use the osgeo code signing certificate on a new machine -

Larry Shaffer is in posession of this certificate and currently signs QGIS and GeoServer builds on his own machine. Now that is operational he requests permission to use this code signing certificate on

Larry is very security aware and would like permission, formally, from OSGeo System Administration Committee before configuring with this certificate.

Access to this machine is limited to one boundless system administrator and members of the GeoServer PSC.

Change History (6)

comment:1 by warmerdam, 7 years ago

As an OSGeo Emeritus person I grant provisional permission to Larry to use this certificate for signing things via

I'd like to suggest that we maintain a wiki page within the SAC Trac wiki to keep track of who has the certificate and for what purposes it is being used. This would then be added to it.

(by way of clarification, I understand this allows signing of binaries *as* OSGeo so caution in use and distribution of the certificate is important). Some notes on cert in

comment:2 by jive, 7 years ago

This certificate was purchased by the board

Its management is given over to the system administrator committee; currently only Michael Smith (osgeo treasurer) and Larry Shaffer (qgis builds) is in possession of the certificate.

comment:3 by warmerdam, 7 years ago

We (SAC) should also keep a copy of the certificate somewhere secure (like /root on {ldap,secure}

comment:4 by jef, 7 years ago

And me. I signed the OSGeo4W installer with it.

comment:5 by jive, 4 years ago

This windows build server is no longer available.

comment:6 by jive, 4 years ago

Resolution: fixed
Status: newclosed
Note: See TracTickets for help on using tickets.