Re: Proposal to include obligatory PGP verification of packages from any

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Proposal to include obligatory PGP verification of packages from any

From:	Vasilij Schneidermann
Subject:	Re: Proposal to include obligatory PGP verification of packages from any repository
Date:	Tue, 20 Oct 2020 18:17:41 +0200

> I have not tried to study each point in your message -- there were so
> many -- but I noticed criticism of Savannah for not offering
> two-factor authentication.
> 
> When I was asked to do this, I couldn't do it, because it depended on
> carrying a protable listening and surveillance device (aka cellular
> phone).  MIT had to make a special exception for me, turning that
> requirement off, when it demanded that I access its administrative
> systems.
> 
> Savannah must not do this if it requires the user to use nonfree
> programs.

There are many ways of doing 2FA and normally it's opt-in.

> If people are interested in discussing this point, let's use
> gnu-prog-discuss@gnu.org as it is off-topic here.

Sure, please include me in your mail there as I'm not subscribed to that
mailing list.  I could probably help out with the security side of
Savannah.

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Proposal to include obligatory PGP verification of packages from any repository, (continued)

Prev by Date: Re: PATCH: Don't mark entire man sections bold
Next by Date: Re: Question collaborative editing - Wikipedia reference
Previous by thread: Re: Proposal to include obligatory PGP verification of packages from any repository
Next by thread: RE: Proposal for an Emacs User Survey
Index(es):
- Date
- Thread