Jacob Appelbaum wanted SFTP package uploads to Debian


Jacob Appelbaum is the security researcher who exposed the foreign power that was monitoring the communications of German Chancellor Angela Merkel.

People got mad about his discoveries and used social media to whip up a mob against him.

I previously analyzed the case and proved that Appelbaum was being falsely accused. These games undermine the credibility of women who want to come forward with genuine complaints about certain men in Debian.

I've also demonstrated in a range of cases that the Debian people don't take the Debian Social Contract seriously. This really brings their integrity into question. Anything goes with this group.

Appelbaum had participated in several discussions in the debian-private secret cubby house that is gradually being published online.

Here he talks about using SFTP for package uploads. This is interesting because we know there have been many attempts to subvert the security of SSH, which underlies SFTP. The mysterious Edward Brocklesby affair is one example where the SSH2 package maintainer was secretly expelled.

Subject: sftp package upload (was Re: How many DDs work for NSA anyway?)
Date: Mon, 21 Apr 2014 10:08:14 -0400
From: James McCoy <jamessan@debian.org>
To: debian-private@lists.debian.org

On Mon, Apr 21, 2014 at 01:29:13PM +0000, Jacob Appelbaum wrote:
> I agree with you here too. I'd also argue that it would be nice to
> have sftp uploads.

We have that already.  See
http://lists.debian.org/debian-devel-announce/2008/09/msg00007.html
which is supported in dput(-ng) by using the ssh-upload host alias.

Cheers,
-- 
James
GPG Key: 4096R/331BA3DB 2011-12-05 James McCoy <jamessan@debian.org>


-- 
Please respect the privacy of this mailing list. Some posts may be declassified
3 years after posting as per http://www.debian.org/vote/2005/vote_002

Archive: file://master.debian.org/~debian/archive/debian-private/

To UNSUBSCRIBE, use the web form at <http://db.debian.org/>.