[prev in list] [next in list] [prev in thread] [next in thread] 

List:       gentoo-project
Subject:    Re: [gentoo-project] pre-GLEP: Gentoo OpenPGP web of trust
From:       Chris Reffett <creffett () gentoo ! org>
Date:       2019-02-01 0:55:13
Message-ID: c8799c49-f1db-5046-bf6c-153e96362ab4 () gentoo ! org
[Download RAW message or body]

[Attachment #2 (multipart/mixed)]


On 1/31/2019 7:42 PM, Kristian Fiskerstrand wrote:
> On 2/1/19 1:41 AM, Chris Reffett wrote:
>> but let me pose a more philosophical
>> question: _why should proving my real name matter_?
> 
> It matters in the context of copyright law.
> 
(IANAL, etc., etc.) At least in US copyright law, you may hold copyright
under a pseudonym, though it has different rules on the length of the
copyright and can cause issues with claiming ownership. Ref:
https://www.copyright.gov/fls/fl101.pdf

That said, though, I'm talking about the GPG key itself here, not my
commits, and I think that verification of real identity through WoT is
an unreasonably high bar for claiming copyright. As an analogy, I can
write a novel, self-publish, and claim copyright (without registering
the copyright, mind you - again, working in US law here, where copyright
is automatic on publication), and I never had to show ID to anyone - the
name on the cover gets the copyright. Why should my commits be any
different?

-creffett


["signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]