-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 2015-04-13 11:08, Jonas Smedegaard wrote: > Quoting Fabian Greffrath (2015-04-13 09:30:54) >> I think it makes a difference if we blindly trust fellow DDs or >> probably random newcomers with unchecked identities. > > That's a valid point.
yes. > > We already deal with with non-identified upstreams, so should not > blindly trust newly added git commits anyway. > > How do envision our fellow non-identified team mates might abuse > admin access to our git repos? Does the risk of such potential > abuse outweigh the benefit of the encouragement it provides to > treat our colleagues as equal peers? i quite agree. assuming "admin" still grants the same priviliges as in 2011 (add new members, edit meta data of alioth project), i think that the harm that can *possibly* be done by a malevolent user is rather small, and it might be worth to just try it out (making everybody admin) and wait until a malefactor turns up (which most likely will never happen). the other question is, how big an encouragement the granted unconditional trust really¹ provides. fgmasdr IOhannes ¹ not that i think that this measurable/quantifiable in any way. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJVK8rzAAoJELZQGcR/ejb4Cx4P/Rzs2iXq33pk51XgWRY5AYpa 1POEszo4hoV51K5pTyqk657fpfFSHFMuemyW1vWalITOkVsqfBI9yhl1UvozW2TJ FsWFgjz5TbHIh8FkpRq02w86FFOdu4W530CRLCcATgizDAhSIGwUPT88Xaif3FS9 e6TQM4OUmTpOJuxdisXA+EaD0OJaAd4u1WE62Nb59YCJs9DJo9+6b4o3FGyG9yBB rIOYuYKZdbNg1BacYjtwSaG5/D6BYN0cwRzE03QvP+dFU5g+ADEWoBSJD9+9h2pG Jnt+Iu8/VmGYRhIl9j92ueO2fdlLnPTu53DPQnBrUQGzL+ogmImjhsh1ca91IFZu MzDcjDf2MWzRwTsomSzL+8joBo2CAzxQxEdW1nWhjg7+1yvWxhnOc5RGZu/1kaK2 8ssGlb0DiRnB8zE5//AXaK4mZZw8VAonkxdlmc3XNDigLgJz4SAb9bzWPi54mMKl uR1hCfaw4rf5BaflWPURZ1Mrv6Tc8X2yBVuT1Vh7plJhf+RR5CiAuf63AbG9sOGl URnOpIVm+9WCyF2nzfru2pM597UG/Fw+JOmToFSvzeC2IBt9pw7erHhC+1hjwa6e 6ACBZLxiaPmYGV7qseF4hhPiM5rgMb4Z9Zxc/BComZHPHEcah2rvFRvBD1z7pZf1 Bn9MwWiOrc2N++T5uyj8 =Gm7T -----END PGP SIGNATURE----- _______________________________________________ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
