launchpad-dev team mailing list archive
-
launchpad-dev team
-
Mailing list archive
-
Message #06661
Re: Packaging permissions redux
-
To:
launchpad-dev@xxxxxxxxxxxxxxxxxxx
-
From:
Aaron Bentley <aaron@xxxxxxxxxxxxx>
-
Date:
Tue, 08 Mar 2011 13:38:30 -0500
-
In-reply-to:
<1299604164.25368.112.camel@solstice>
-
User-agent:
Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.14) Gecko/20110223 Thunderbird/3.1.8
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 11-03-08 12:09 PM, Curtis Hovey wrote:
> On Tue, 2011-03-08 at 11:37 -0500, Aaron Bentley wrote:
>>> Who is a qualified packager?
>>
>> Someone who has upload rights on a package in Ubuntu?
>
> I think that is too strict. I think the majority of package linkers are
> just users who checked that the urls of both entities were the same.
Do you think that is really enough? That kind of thinking could lead
people to link https://launchpad.net/ubuntu/dapper/+source/bazaar to
https://launchpad.net/bzr.
Even before the bazaar confusion, I wrote a program with the same
initials as Fully Automated Installer.
> I do not think permission is or ever was the issue.
The impression I got from you was that that people who didn't know
enough were creating the links. So I think it's reasonable to restrict
it to people who should know enough.
> A human can make a mistake.
Sure, and we can recover if they do, but it's better to reduce the rate
of mistakes if we can.
> Even if a motu gets it right, the project maintainer can change
> the branch to something that is wrong a month later.
That sounds like a corner case. They would be sabotaging their own
project by doing so. Is really something we need to worry about?
> We can solve this by sanity checks.
We expect to include setting up the branch as part of translation
configuration, so sanity checks that require checking the content of the
branch are problematic. What other sanity checks could we do?
Aaron
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk12d6YACgkQ0F+nu1YWqI2p1QCbB/zyFkXuEbmHvfGlzwZZiZy/
Ly8An2h25d0nNed7ZlYY/7dYb0+D+4jm
=Rj09
-----END PGP SIGNATURE-----
Follow ups
References
-
Packaging permissions redux
From: Aaron Bentley, 2011-03-07
-
Re: Packaging permissions redux
From: Micah Gersten, 2011-03-07
-
Re: Packaging permissions redux
From: Aaron Bentley, 2011-03-07
-
Re: Packaging permissions redux
From: Micah Gersten, 2011-03-07
-
Re: Packaging permissions redux
From: Curtis Hovey, 2011-03-07
-
Re: Packaging permissions redux
From: Robert Collins, 2011-03-07
-
Re: Packaging permissions redux
From: Henning Eggers, 2011-03-08
-
Re: Packaging permissions redux
From: Curtis Hovey, 2011-03-08
-
Re: Packaging permissions redux
From: Aaron Bentley, 2011-03-08
-
Re: Packaging permissions redux
From: Curtis Hovey, 2011-03-08
-
Re: Packaging permissions redux
From: Aaron Bentley, 2011-03-08
-
Re: Packaging permissions redux
From: Curtis Hovey, 2011-03-08