[Xorg] New committer process?

Jeremy C. Reed reed at reedmedia.net
Mon Jun 14 12:53:07 PDT 2004


On Mon, 14 Jun 2004, Keith Packard wrote:

> > Isn't SSH safe enough?
> > commiting with SSH sounds preety good way to prevent spoofing IMHO
>
> My question was higher level -- how do we authenticate people we give
> accounts to on the machine in the first place.  Right now, we're mostly
> letting each project vette people with informal irc or email
> "authentication"; that works pretty well when you know the people involved,
> otherwise it doesn't work.

One of the groups I am a member of requires GPG/PGP keys signed by another
member already part of the project.

And they have to meet in person (I was told) for the verification.

Also, we require sponsors.

 Jeremy C. Reed

 	  	 	 BSD News, BSD tutorials, BSD links
	  	 	 http://www.bsdnewsletter.com/





More information about the xorg mailing list