| 1 |
On Sat, Nov 19, 2005 at 01:51:15PM -0600 or thereabouts, Brian Harring wrote: |
| 2 |
> I'll again point out that the glep doesn't actually mandate it, states |
| 3 |
> it's the lowest common denominator that's acceptable. |
| 4 |
|
| 5 |
And I'll point out that there's more than one issue that we're concerned |
| 6 |
with here. |
| 7 |
|
| 8 |
> Stop pointing at one interpretation of it that sucks, when the glep |
| 9 |
> _does_ leave it open to you how to implement it. It's a waste of |
| 10 |
> people's time and bandwidth, and is a bit disenguous. |
| 11 |
|
| 12 |
I'm trying to find a solution to the issues as I see them. Telling me I'm |
| 13 |
wasting people's time and bandwidth doesn't seem conducive to working |
| 14 |
together towards a resolution to this all. If you're going to say, "it was |
| 15 |
passed, you guys just have to find a way to implement it. now please stop |
| 16 |
bothering us" then I'm going to come up with an implementation plan that |
| 17 |
looks something like the following: |
| 18 |
|
| 19 |
* all SSH keys and email addresses for arch testers will auto-expire after |
| 20 |
60 days. If an arch tester needs to have continued access, a gentoo dev |
| 21 |
will have to re-submit the key and recreate the alias for that arch |
| 22 |
tester every 60 days. |
| 23 |
|
| 24 |
That meets the requirements of the GLEP down to the letter and also |
| 25 |
satisfies infra concerns around key management. However, it's a crappy |
| 26 |
solution. |
| 27 |
|
| 28 |
So, I'd much rather work together towards finding a better one. |
| 29 |
|
| 30 |
--kurt |
Archives