[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Monotone-devel] Policy branch example scenarios
From: |
Richard Levitte - VMS Whacker |
Subject: |
Re: [Monotone-devel] Policy branch example scenarios |
Date: |
Mon, 11 Sep 2006 10:05:47 +0200 (CEST) |
In message <address@hidden> on Sun, 10 Sep 2006 23:48:17 -0700, "Zack Weinberg"
<address@hidden> said:
zackw> * Oscillating Cspec Of Doom
[...]
zackw> out of the set of trusted policies. Here's a very simple scenario
zackw> where this could be a problem: Alice (an administrator) resigns from
zackw> a project, and does so not by asking some other administrator to
zackw> revoke her access, but by doing so herself; so you have a policy
zackw> revision that denies Alice authority, *signed by Alice* -- so it
zackw> doesn't trust itself.
This is a trust question that has interested me for a while. Why
would that revikation not be trusted? She does have authority to do
so *at the time she did*, does she not?
zackw> Clearly such a policy is invalid,
That's not at all clear to me.
Cheers,
Richard
-----
Please consider sponsoring my work on free software.
See http://www.free.lp.se/sponsoring.html for details.
--
Richard Levitte address@hidden
http://richard.levitte.org/
"When I became a man I put away childish things, including
the fear of childishness and the desire to be very grown up."
-- C.S. Lewis