Re: debian-ctte mailing list and spam
On Fri, Jun 18, 2004 at 10:51:46AM +0200, Wichert Akkerman wrote:
> (Replaced debian-admin with listmaster since they are the only ones who
> can make this change)
> Previously Ian Jackson wrote:
> > Raul Miller writes ("debian-ctte mailing list and spam"):
> > > I also don't know how the other committee members would feel about this
> > > mechanism. [Currently, little traffic is signed, this message included
> > > -- I know I like to minimize my key use for a variety of reasons, most
> > > related to security. However, this proposal would mean more work for
> > > everybody not signing their messages.]
> > It would be straightforward to allow people to use a different
> > lower-security key. We could add the addresses which respond to the
> > challenge to a whitelist, turning the whole thing into a
> > challenge-response scheme.
> This sounds like a reasonably large amount of work. Considering we
> already have the necessary tools to only allow signed messages through
> on a mailinglist (used for debian-devel-announce and
> debian-security-announce) why not just use that?
Speaking with my listmaster hat on, that's certainly possible, but I
don't believe it will help non-subscribers or subscribers posting with a
different address all that much. I guess every little bit helps however.