[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: debian-ctte mailing list and spam

(Replaced debian-admin with listmaster since they are the only ones who
can make this change)

Previously Ian Jackson wrote:
> Raul Miller writes ("debian-ctte mailing list and spam"):
> > I also don't know how the other committee members would feel about this
> > mechanism.  [Currently, little traffic is signed, this message included
> > -- I know I like to minimize my key use for a variety of reasons, most
> > related to security.  However, this proposal would mean more work for
> > everybody not signing their messages.]
> 
> It would be straightforward to allow people to use a different
> lower-security key.  We could add the addresses which respond to the
> challenge to a whitelist, turning the whole thing into a
> challenge-response scheme.

This sounds like a reasonably large amount of work. Considering we
already have the necessary tools to only allow signed messages through
on a mailinglist (used for debian-devel-announce and
debian-security-announce) why not just use that?

Wichert.

-- 
Wichert Akkerman <wichert@wiggy.net>    It is simple to make things.
http://www.wiggy.net/                   It is hard to make things simple.
Reply to: