1 |
On 09/06/06, Edward Catmur <ed@×××××××××.uk> wrote: |
2 |
> And what if they do know what they're doing, and what they're doing is |
3 |
> subverting Gentoo systems en masse? You're proposing to hand out commit |
4 |
> access to anyone who makes a case on IRC; you have no way to tell that |
5 |
> they aren't an attacker. |
6 |
|
7 |
This is the way the system currently works. I'm sure any decent |
8 |
motivated hacker would be able to fix a few ebuilds, hang out on irc, |
9 |
do the quiz, and gain cvs commit access. There are no identity checks |
10 |
when you become a gentoo developer; it's all about reputation. |
11 |
-- |
12 |
gentoo-dev@g.o mailing list |