On Sat, Jul 28, 2007 at 12:39:29AM +0200, Wouter Verhelst wrote: > On Fri, Jul 27, 2007 at 08:48:26PM +0200, cobaco (aka Bart Cornelis) wrote: > > Essentially the proposal allows non-DD maintainers (we have 900+, see the > > thread starting at [1] for details) to upload their own packages IF AND > > ONLY IF their sponsor has indicated agreement with that by having added > > the "DM-Upload-Allowed: yes" in the control file of the previous upload. > Actually, no. The proposal states that a DM can upload their own > packages, and that any maintainer can allow DM NMUs by adding that field > to the control file.
Uh, no, that's not what it states. It says:
---
The initial policy for the use of the Debian Maintainer keyring with
the Debian archive will be to accept uploads signed by a key in that
keyring provided:
* none of the uploaded packages are NEW
* the Maintainer: field of the uploaded .changes file corresponds
with the owner of the key used (ie, non-developer maintainers may
not sponsor uploads)
* none of the packages are being taken over from other source packages
* the most recent version of the package uploaded to unstable or
experimental includes the field "DM-Upload-Allowed: yes" in the
source section of its control file
* the most recent version of the package uploaded to unstable or
experimental lists the uploader in the Maintainer: or Uploaders:
fields (ie, non-developer maintainers cannot NMU or hijack packages)
* the usual checks applied to uploads from Debian developers pass
---
The "DM-Upload-Allowed" and "Maintainer/Uploaders" clauses both have to be
satisfied for every upload, as do all the others.
Cheers,
aj
signature.asc
Description: Digital signature
