Re: Keysigning in times of COVID-19

To: debian-project@lists.debian.org
Subject: Re: Keysigning in times of COVID-19
From: Russ Allbery <rra@debian.org>
Date: Thu, 20 Aug 2020 10:24:33 -0700
Message-id: <[🔎] 87zh6pi626.fsf@hope.eyrie.org>
In-reply-to: <[🔎] 159791843646.3529538.3507797184169759310@auryn.jones.dk> (Jonas Smedegaard's message of "Thu, 20 Aug 2020 12:13:56 +0200")
References: <[🔎] 20200806155421.vb6prsd7gyjnbhmd@enricozini.org> <[🔎] 159768954219.3529538.3040549531150410986@auryn.jones.dk> <[🔎] 20200819133304.GA19329@pc181009.be.zetes.internal> <[🔎] 202008191204.27749.rhkramer@gmail.com> <[🔎] 874koxagix.fsf@hands.com> <[🔎] 159791843646.3529538.3507797184169759310@auryn.jones.dk>

Jonas Smedegaard <dr@jones.dk> writes:

> Any opinion on the "votes twice" part? Anyone?

How many decisions have we had that were decided by a slim enough margin
that you believe fraud could have changed the outcome?

What have we voted on that you think anyone would care sufficiently about
to do the tedious and time-consuming work required to get a fake identity
with voting privileges?

I'm dubious of the threat model.  Injecting malicious code into the
archive seems to have a far, far higher reward to effort ratio than voting
in our rare and generally not very close project votes.

-- 
Russ Allbery (rra@debian.org)              <https://www.eyrie.org/~eagle/>

Reply to:

References:
- Keysigning in times of COVID-19
  - From: Enrico Zini <enrico@enricozini.org>
- Re: Keysigning in times of COVID-19
  - From: Jonas Smedegaard <dr@jones.dk>
- Re: Keysigning in times of COVID-19
  - From: Wouter Verhelst <wouter@debian.org>
- Re: Keysigning in times of COVID-19
  - From: rhkramer@gmail.com
- Re: Keysigning in times of COVID-19
  - From: Philip Hands <phil@hands.com>
- Re: Keysigning in times of COVID-19
  - From: Jonas Smedegaard <dr@jones.dk>

Prev by Date: Re: Keysigning in times of COVID-19
Next by Date: Re: Keysigning in times of COVID-19
Previous by thread: Re: Keysigning in times of COVID-19
Next by thread: Re: Keysigning in times of COVID-19
Index(es):
- Date
- Thread