RFC: FESCo Future

[Michael Schwendt]

On Sun, 23 Apr 2006 23:12:32 -0400, seth vidal wrote:

> Also how do we handle the issue of security in
> terms of the package-signing key during transitions? Clearly anyone
> outgoing shouldn't keep access to the key.

"Clearly"?

At present, not everybody in FESCO has access to the sign/push scripts or
the master repository. Access was granted based on an established level of
trust, wasn't it? If people in FESCO are replaced, do you really want to
throw away such an establishment? Wow! That's a step backwards IMO.