Bug 139

Summary: RHCN should check if the package was produced by the maintainer
Product: [Retired] Red Hat Contrib|Net Reporter: Aleksey Nogin <aleksey>
Component: rhcnAssignee: David Lawrence <dkl>
Status: CLOSED WONTFIX QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: 1.0Keywords: Security
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
URL: http://developer.redhat.com/rhcn/packageinfo.php3?package=squid-rhcn
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Aleksey Nogin 1998-11-19 23:35:08 UTC 
I was notified today that my RPMs were accepted into
Contrib|Net. Among the accepted RPMs were
squid-rhcn-2.1.0-1.i386.rpm
squid-rhcn-2.1.0-1.src.rpm
squid-rhcn-2.1.1-1.i386.rpm
squid-rhcn-2.1.1-1.src.rpm
that were NOT uploaded by me (I _did_ registered to
maintaing squid). Howewer, they are still listed under my
name!

I believe that this happened because some other RHCN member
uploaded these RPMs for some reason and RHCN script checked
that it was signed by _some_ RHCN member, but it did not
check if that member is the package maintainer.
Comment 1 Preston Brown 1999-03-29 21:02:59 UTC 
Alex, what is the status of this bug?
Comment 2 David Lawrence 2000-05-15 16:20:59 UTC 
RHCN has been discontinued and therefore this bug report is being closed. If you
have any questions about why this bug should not have been closed please direct
to bugzilla-owner. Sorry for any inconvenience.