[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: DEP1: Clarifying policies and workflows for Non Maintainer Uploads (NMUs)

On Tue, May 27, 2008 at 12:27:13PM +0200, Giacomo A. Catenazzi wrote:
> Tollef Fog Heen wrote:
> >* Cyril Brulebois 
> >
> >| On 26/05/2008, Manoj Srivastava wrote:
> >| >         But, with the singular exception of DM's, non-DD folks
> >| >  are _not_ in a position to control what's going on with their
> >| >  packages.
> >| 
> >| Exactly my point, that's the kind of control that (I think) they
> >| should be given.

I disagree.  Just to be clear, people who are not DD and not DM should
IMO need a sponsor for any action at all they do on the archive.

We're talking here about an untrusted maintainer whose package is NMU'd
by a DD.  DDs are implicitly trusted.  Given this situation, I think it
is good to expect the NMUer to be available during the delay, and
respond to reasonable requests from the maintainer.

Whether or not the maintainer is reasonable is something which can only
be checked by a human.  There is not even a GPG key, everyone can set
the from address of an e-mail and nobody can even check if it's really
the maintainer talking.

> >There's a small technical issue on how to give DMs the ability to
> >upload dcut files somewhere the DELAYED queue can get at them, but if
> >this is a requirement, we can fix that.  (CGI form to upload them or
> >something like that.)
> >
> >The queue also don't have a concept of ACLs today, so that'd need to
> >be changed slightly for DMs.

This sounds reasonable, although I'm not sure if it's worth the effort
(I don't expect it to be used much, and NMUers should be available, so
there is a workaround).

> DM cannot do NMUs, so I don't see why DM should upload to DELAYED, so
> this is a minor point, and probably it is simpler to forbid DELAYED to
> DM.

It's not about DMs doing NMUs, but about aborting NMUs to their


I encourage people to send encrypted e-mail (see http://www.gnupg.org).
If you have problems reading my e-mail, use a better reader.
Please send the central message of e-mails as plain text
   in the message body, not as HTML and definitely not as MS Word.
Please do not use the MS Word format for attachments either.
For more information, see http://pcbcn10.phys.rug.nl/e-mail.html

Attachment: signature.asc
Description: Digital signature

Reply to: