From a5b739af6d20312d47ab75a63bc4fbfd847b65a6 Mon Sep 17 00:00:00 2001
From: Joey Hess <joey@kitenet.net>
Date: Mon, 31 Mar 2014 15:52:40 -0400
Subject: out of band keyring transfer is not necessary, since repo is cloned
 securely

---
 README | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

(limited to 'README')

diff --git a/README b/README
index ce9769c0..2013799b 100644
--- a/README
+++ b/README
@@ -54,7 +54,7 @@ for available fields.
 
 It's often easiest for a remote host to use a git:// or http://
 url to its origin repository, rather than ssh://. So, to avoid a MITM
-attack, propellor checks that the top commit in the git repository is gpg
+attack, propellor checks that any commit it fetched from origin is gpg
 signed by a trusted gpg key, and refuses to deploy it otherwise.
 
 This is only done when privdata/keyring.gpg exists. To set it up:
@@ -62,8 +62,4 @@ This is only done when privdata/keyring.gpg exists. To set it up:
 gpg --gen-key                 # only if you don't already have a gpg key
 propellor --add-key $MYKEYID
 
-The keyring.gpg can be checked into git, but to ensure that it's
-used from the beginning when bootstrapping, propellor --spin
-transfers it to the host using ssh.
-
 [1] http://reclass.pantsfullofunix.net/
-- 
cgit v1.3-2-g0d8e