Re: spammers closing bugs in BTS

To: debian-devel@lists.debian.org
Subject: Re: spammers closing bugs in BTS
From: Daniel Pocock <daniel@pocock.pro>
Date: Wed, 17 Aug 2016 18:38:35 +0200
Message-id: <[🔎] 57B4930B.1070209@pocock.pro>
In-reply-to: <[🔎] 93197fa9-ed8a-542f-44e5-83416ae0ec73@gmail.com>
References: <[🔎] 57B48D6E.3020200@pocock.pro> <[🔎] 93197fa9-ed8a-542f-44e5-83416ae0ec73@gmail.com>

On 17/08/16 18:34, Stéphane Blondon wrote:
> Hello,
> 
> Le 17/08/2016 à 18:14, Daniel Pocock a écrit :
>> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737921
>> 
>> Maybe time to start requiring PGP signatures on control emails to
>> the BTS?
> 
> Requiring signature will increase the level to send bugs to the BTS
> for external people. And spammers could add a signature.
> 
> An attempt to improve the first proposal: - If a bug report has a
> valid signature from the Debian web of trust, we could consider it
> as valid. - If no signature, a activation link into the replyied
> e-mail validates the report.
> 
> 

I was only talking about control emails (e.g. the -done address and
control@).  The requirements for opening bugs or submitting comments
(without pseudo-headers) could remain as they are.

Maybe it could insist that emails from addresses known to be DDs have
to be signed.  This would prevent people impersonating DDs.

Reply to:

Follow-Ups:
- Re: spammers closing bugs in BTS
  - From: Kalle Olavi Niemitalo <kon@iki.fi>
- Re: spammers closing bugs in BTS
  - From: Gunnar Wolf <gwolf@debian.org>

References:
- spammers closing bugs in BTS
  - From: Daniel Pocock <daniel@pocock.pro>
- Re: spammers closing bugs in BTS
  - From: Stéphane Blondon <stephane.blondon@gmail.com>

Prev by Date: Re: spammers closing bugs in BTS
Next by Date: Does anybody plan to keep using sbuild with Squeeze or older chroots?
Previous by thread: Re: spammers closing bugs in BTS
Next by thread: Re: spammers closing bugs in BTS
Index(es):
- Date
- Thread