RFC: FESCo Future

Michael Schwendt bugs.michael at gmx.net
Mon Apr 24 16:55:46 UTC 2006

On Sun, 23 Apr 2006 23:12:32 -0400, seth vidal wrote:

> Also how do we handle the issue of security in
> terms of the package-signing key during transitions? Clearly anyone
> outgoing shouldn't keep access to the key.


At present, not everybody in FESCO has access to the sign/push scripts or
the master repository. Access was granted based on an established level of
trust, wasn't it? If people in FESCO are replaced, do you really want to
throw away such an establishment? Wow! That's a step backwards IMO.

More information about the fedora-extras-list mailing list