The debian-private mailing list leak, part 1. Volunteers have complained about Blackmail. Lynchings. Character assassination. Defamation. Cyberbullying. Volunteers who gave many years of their lives are picked out at random for cruel social experiments. The former DPL's girlfriend Molly de Blanc is given volunteers to experiment on for her crazy talks. These volunteers never consented to be used like lab rats. We don't either. debian-private can no longer be a safe space for the cabal. Let these monsters have nowhere to hide. Volunteers are not disposable. We stand with the victims.
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: new maintainer verification

> +t doesn't work too well on Incoming as Ian > and I really do need
write permission there.  > (dinstall actually runs as part of Ian's
daily cron job).

My main concern is that a rogue maintainer could get a login on master
(we don't check their background much now) and then upload a package
with a time-bomb or trojan horse. The package is installed by many
people, and when discovered it makes our entire paradigm look bad.

The FTP archive (not Incoming) could be made group-write-only, with 10
or so people we know well in the group. However, my main concern is that
we verify the identity of the people we give login privileges on master.

	Thanks

	Bruce


--
Please respect the confidentiality of material on the debian-private list.
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-private-REQUEST@lists.debian.org . Trouble? e-mail to Bruce@Pixar.com