Re: auto-whitelist DDs?

To: Rhonda D'Vine <rhonda@deb.at>
Cc: debian-backports@lists.debian.org
Subject: Re: auto-whitelist DDs?
From: Mehdi Dogguy <mehdi@dogguy.org>
Date: Tue, 28 Jun 2016 18:16:43 +0200
Message-id: <[🔎] b5e384fd-1d66-35e1-952a-f6c04093dc6e@dogguy.org>
In-reply-to: <[🔎] 20160628155147.GA25930@anguilla.debian.or.at>
References: <[🔎] 20160628103009.GA23317@chew.redmars.org> <[🔎] 20160628110232.GB12819@smithers.snow-crash.lan> <[🔎] 4a7dc0db-0839-a185-6610-ad10fd6460ea@dogguy.org> <[🔎] 20160628154914.GA17029@anguilla.debian.or.at> <[🔎] 20160628155147.GA25930@anguilla.debian.or.at>

Hi Rhonda,

Thanks for the explanation. It is really appreciated. And, I am sure it will
be useful for others too.

On 28/06/2016 17:51, Rhonda D'Vine wrote:
> * Rhonda D'Vine <rhonda@deb.at> [2016-06-28 17:49:14 CEST]:
>> * Mehdi Dogguy <mehdi@dogguy.org> [2016-06-28 17:30:55 CEST]:
>>> On 28/06/2016 13:02, Alexander Wirt wrote:
>>>> On Tue, 28 Jun 2016, Jonathan Dowland wrote:
>>>>> Whilst I wait for my account to be whitelisted (applied June 13) I wonder, has
>>>>> a DD applying to be added to the ACL ever been refused? Or subsequently
>>>>> removed?
>>>>>
>>>>> Have you folks ever considered automatically including all DD accounts into
>>>>> the ACL? Would that not save you all some time?
>>>>
>>>> Yes and we decided against it. DDs make the same upload errors (or in fact
>>>> even more) than other uploaders.
>>>
>>> Who are the other uploaders?
>>
>>  DMs?
>>

Indeed. I guess I got confused. :-)

>>> Besides, can you please help us to understand the different reasons that led
>>> that conclusion?
>>
>>  The possibility to remind people that uploads to backports are
>> available mostly without further checking for users of stable and thus
>> they should take extra care is important enough for me personally on
>> itself.
> 

Can we do something about that like adding specific questions about
backports in the NM templates? AFAIK, backports is not "documented"
there and it would be a nice step forward.

>  ... also the matter of least privileges should be something that should
> be more commonly applied and better understood than be opposed to.  Like
> written, the packages end up on stable systems without any further gate
> keeping like in stable updates or stable security.
> 

Well, I do agree on the principle, but I am not convinced an explicit request
to get upload rights to backports is an efficient solution in this very
specific case (in terms of time spent on both sides and net effect).

My preference would have been to make sure things are documented [1], people
are aware of the process [2], communicating about the processes [3] and
punishing "bad uploaders" only. YMMY though.

[1] Fortunately, it is the case here.
[2] Specific NM questions about backports
[3] a blog post should do

Regards,

-- 
Mehdi

Reply to:

References:
- auto-whitelist DDs?
  - From: Jonathan Dowland <jmtd@debian.org>
- Re: auto-whitelist DDs?
  - From: Alexander Wirt <formorer@formorer.de>
- Re: auto-whitelist DDs?
  - From: Mehdi Dogguy <mehdi@dogguy.org>
- Re: auto-whitelist DDs?
  - From: Rhonda D'Vine <rhonda@deb.at>
- Re: auto-whitelist DDs?
  - From: Rhonda D'Vine <rhonda@deb.at>

Prev by Date: Re: auto-whitelist DDs?
Next by Date: Re: Backporting MySQL?
Previous by thread: Re: auto-whitelist DDs?
Next by thread: Source only uploads and other questions
Index(es):
- Date
- Thread