Re: security of the emacs package system, elpa, melpa and marmalade

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: security of the emacs package system, elpa, melpa and marmalade

From:	Matthias Dahl
Subject:	Re: security of the emacs package system, elpa, melpa and marmalade
Date:	Mon, 30 Sep 2013 17:10:43 +0200
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.0

Hello...

> I would propose using the signature files above to provide that wall,
> so auto-signing should not be done.  Instead a maintainer team should
> review changes that need to go up on the GNU ELPA.

Ted, that would be really nice to have but as it was brought up earlier
in this thread, this is not gonna happen. And I can honestly understand
why it can't happen. The amount of manpower required to really do this
properly, is not something that could be easily shouldered by a team of
trusted volunteers in a timely manner.

So long,
Matthias

-- 
Dipl.-Inf. (FH) Matthias Dahl | Software Engineer | binary-island.eu
 services: custom software [desktop, mobile, web], server administration

[Prev in Thread]

Current Thread

[Next in Thread]

Re: security of the emacs package system, elpa, melpa and marmalade, (continued)

Prev by Date: Re: Changes in revision 114466
Next by Date: Re: Changes in revision 114466
Previous by thread: Re: security of the emacs package system, elpa, melpa and marmalade
Next by thread: Re: security of the emacs package system, elpa, melpa and marmalade
Index(es):
- Date
- Thread