Re: upload with name of sponsored person?

To: Adrian Bunk <bunk@fs.tum.de>
Cc: debian-mentors@lists.debian.org
Subject: Re: upload with name of sponsored person?
From: Peter S Galbraith <GalbraithP@dfo-mpo.gc.ca>
Date: Wed, 23 Aug 2000 14:05:24 -0400
Message-id: <[🔎] 200008231805.OAA17010@mixing.qc.dfo.ca>
In-reply-to: (Your message of Wed, 23 Aug 2000 19:58:47 +0200.) <[🔎] Pine.NEB.4.21.0008231952430.964-100000@neptun.fachschaften.tu-muenchen.de>

Adrian Bunk wrote:

> There's another possibility that I do use together with my sponsor
> Tony Mancill:
> 
> I build the package unsigned:
> 
>   dpkg-buildpackage -rfakeroot -us -uc 
> 
> And my sponsor only signs the package using debsign (and doesn't rebuild
> it). There's still my name in the maintainer field of the changes file,
> but the package is accepted because it is signed by my sponsor.

Technically, that works.  In theory, one could argue that the
person who signs the package should be the one to compile to be
sure of what is being compiled (it's easier to inspect the .diff
file and makes sure it's not trying to delete a user's hard
drive for a drastic example).

But that's a matter of trust, which I'm not questioning wrt you
and your sponser.

Peter

Reply to:

References:
- Re: upload with name of sponsored person?
  - From: Adrian Bunk <bunk@fs.tum.de>

Prev by Date: Re: NMU and BTS
Next by Date: Re: upload with name of sponsored person?
Previous by thread: Re: upload with name of sponsored person?
Next by thread: Re: upload with name of sponsored person?
Index(es):
- Date
- Thread