Re: [Moshe Zadka <firstname.lastname@example.org>] Independent Count
>> On Mon, 24 Mar 2003 18:41:31 +0100,
>> Peter Makholm <email@example.com> said:
> Henrique de Moraes Holschuh <firstname.lastname@example.org> writes:
>> Maybe I am dense, but isn't the entire voting published (in hashed
>> format) so that every developer that voted can see for himself if
>> he vote was counted or not? And, I suppose, raise a major havok
>> if it is wrong?
> You can't check wether there is added some votes. The only way to
> make sure that the acting secratary hasn't added some extra votes
> is if every one checks their vote and publicaly declare that their
> vote is correct tallied.
There is a separate list of people who have voted. So, you
can make sure that the secreatry hasn't added names of people not in
the Debian keyring and LDAP. So, people who have not voted should
ensure that their names did not show up in the list.
Any member of the Debian sys admin team has access to the
original signed emails, and can thus recheck the whole vote by
re-running the scripts; so tampering with the vote would be rather
silly thing to do.
However, there are problems if the maintainers do not
exercise due diligence; we have to *gasp* actually trust the person
running the vote. (Remember, we all place some trust in developers
already: they have root on our machine at package install time).
What is virtue today may be vice tomorrow.
Manoj Srivastava <email@example.com> <http://www.debian.org/%7Esrivasta/>
1024R/C7261095 print CB D9 F4 12 68 07 E4 05 CC 2D 27 12 1D F5 E8 6E
1024D/BF24424C print 4966 F272 D093 B493 410B 924B 21BA DABB BF24 424C