On Wed, Jan 11, 2023 at 02:24:56PM +0000, Polarian wrote:
Furthermore, how do you know how long I have been around Arch Linux and the community, just because I didn't post doesn't mean I was not there in the background.
I'm an AUR administrator, so I know. Being around the community is also not the same as actively participating in it.
I have read a large amount of the ArchWiki, and recently have began to contribute a lot to it, so please don't undermine me.
I don't think asking you to calm down is undermining you. Observing how a community functions is just as important as participating in one.
As for the account, its not secure if the TU's restore the account without 100x confidence that it was theirs, otherwise I could spin up a random email address and try "recovering" accounts from others.
I am sure if the account name and the email address (the domain) are similar it would be obvious, but if not would TU's restore based on verifying their are the holder of the GPG key linked to the account?
Yes, a GPG key is sufficient. Everyone has a SSH key associated with the account. This key can also be used to sign messages and prove ownership of the account. We've also done this by having the user state private details of the account as well. The point is that this is something for the TUs to handle, and we know very well how to deal with it. -- Morten Linderud PGP: 9C02FF419FECBE16