IngridvdM wrote on Sun, Jul 24, 2011 at 20:04:54 +0200: > Am 24.07.2011 18:41, schrieb Daniel Shahaf: > >IngridvdM wrote on Sun, Jul 24, 2011 at 10:02:00 +0200: > >>Am 23.07.2011 23:47, schrieb Ross Gardler: > >>>It is common practice for Apache projects to periodically clear out > >>>their committer lists. People who are no longer active on a project > >>>are, in many projects, routinely moved to emeritus status. It is > >>>entirely possible that this project will opt to do the same at some > >>>point in the future (note committers who are moved to emeritus need > >>>only ask to have their commit privileges returned). > >>> > >>Ok, that was quite unexpected to me. But in another thread I have > >>learned now that this is done because of security reasons. I think > >>that is a good reason also! > >> > > > >I don't see what security is achieved here. > > > Prevent misuse of unattended accounts I believe. > Isn't this the case? >
That depends on how you track emeritus status --- within the project, or also by removing people from the ooo and/or ooo-pmc groups in the authz file when they turn emeritus.
