[Haskell-cafe] Enhancing the security of hackage
Ivan Lazar Miljenovic
ivan.miljenovic at gmail.com
Thu Dec 9 13:13:04 CET 2010
On 9 December 2010 23:04, Ketil Malde <ketil at malde.org> wrote:
> [snip]
> This way, somebody is likely to actually *notice* when some evil person
> uploads a trojan mtl or bytestring or whatever. The downside is more
> mail, and the people who run Hackage have been wary about this. So
> perhaps even this is on the wrong side of the cost/benefit fence.
Whilst we're wishfully thinking, why not register a package to an
individual or a group, and only allow them to upload it? Possibly
linking this to a group on community.haskell.org or something.
--
Ivan Lazar Miljenovic
Ivan.Miljenovic at gmail.com
IvanMiljenovic.wordpress.com
More information about the Haskell-Cafe
mailing list