[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: RFC: FESCo Future

From: seth vidal <skvidal linux duke edu>
To: Discussion related to Fedora Extras <fedora-extras-list redhat com>
Subject: Re: RFC: FESCo Future
Date: Tue, 25 Apr 2006 01:06:50 -0400

On Mon, 2006-04-24 at 18:55 +0200, Michael Schwendt wrote:
> On Sun, 23 Apr 2006 23:12:32 -0400, seth vidal wrote:
> 
> > Also how do we handle the issue of security in
> > terms of the package-signing key during transitions? Clearly anyone
> > outgoing shouldn't keep access to the key.
> 
> "Clearly"?
> 
> At present, not everybody in FESCO has access to the sign/push scripts or
> the master repository. Access was granted based on an established level of
> trust, wasn't it? If people in FESCO are replaced, do you really want to
> throw away such an establishment? Wow! That's a step backwards IMO.

I don't understand what you mean here. I think we've got some sort of
miscommunication.

Here's what I'm saying:

we have N signers right now. At some point it is conceivable that one of
the signers will stop working on the project. I do not mean anything
about the people leaving FESCO - I mean about the people leaving the
group of signers.

-sv

Follow-Ups:
- Re: RFC: FESCo Future
  - From: Michael Schwendt

References:
- RFC: FESCo Future
  - From: Thorsten Leemhuis
- Re: RFC: FESCo Future
  - From: Jeff Spaleta
- Re: RFC: FESCo Future
  - From: Josh Boyer
- Re: RFC: FESCo Future
  - From: seth vidal
- Re: RFC: FESCo Future
  - From: Michael Schwendt

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]