Gentoo Archives: gentoo-project

From: "Andreas K. Huettel" <dilfridge@g.o>
To: gentoo-project@l.g.o
Cc: Rich Freeman <rich0@g.o>
Subject: Re: [gentoo-project] pre-GLEP: Gentoo OpenPGP web of trust
Date: Fri, 01 Feb 2019 12:53:00
Message-Id: 3632143.Zo7t0miSdB@porto
Am Freitag, 1. Februar 2019, 02:56:29 CET schrieb Rich Freeman:
> On Thu, Jan 31, 2019 at 7:55 PM Chris Reffett <creffett@g.o> wrote: > > On 1/31/2019 7:42 PM, Kristian Fiskerstrand wrote: > > > On 2/1/19 1:41 AM, Chris Reffett wrote: > > >> but let me pose a more philosophical > > >> question: _why should proving my real name matter_? > > > > > > It matters in the context of copyright law. > > > > That said, though, I'm talking about the GPG key itself here, not my > > commits, and I think that verification of real identity through WoT is > > an unreasonably high bar for claiming copyright. > > ++ > > I think there are a lot of good reasons to require real names. > However, making that our policy and upholding it when we have cause to > think a name is false doesn't require us to rigorously check IDs. > > Maybe for officers listed on filings for the Foundation it is more of a > concern. > > IMO Gentoo developers should simply be asked to provide their real > name, and to confirm that they are legally adults. I don't think > we're doing anything that necessitates a higher level of due diligence > than that unless somebody actually brings a potential specific concern > to our attention.
++ -- Andreas K. Hüttel dilfridge@g.o Gentoo Linux developer (council, toolchain, base-system, perl, libreoffice)

Attachments

File name MIME type
signature.asc application/pgp-signature