Jehan commented on a discussion:
I just sent you an email with the credentials encrypted with your key.
Note that the second file is my signature of your encrypted credentials with my own public key (as found with gpg --keyserver pgp.key-server.io --search-key 77F1D0A66D0E0444
under the name "Jehan Pagès", this is also the same key used to sign releases of GIMP in git
), which should diminish mitm-decryption-reencryption attacks.
Please tell us when your mirror is all set up and working so that we can close this report. Thanks!