On Thu, May 31, 2007 at 03:15:06PM +0200, cobaco (aka Bart Cornelis) wrote: > -> do we really need to make this more complicated than: > 1) "sponsor officially declares this person can in his opion handle the > sponsored package"? > 2) sponsoree gets upload rights for that package We need some way to identify "this person" -- ie, a gpg key that's verified by a DD in some way. We probably want some assurance that this person's going to be trustworthy and honourable and support Debian's goals, like affirming the social contract and such. Cheers, aj
Attachment:
signature.asc
Description: Digital signature