Re: Need advice pertaining to GSoC proposal

Debayan Banerjee wrote: The user has know way of knowing whether their machine is now a botnet zombie - we simply can not put them at that risk. Put it this way, even one hacked machine is bad for a distribution's reputation. Firstly, it it not easy to tell that a bad package has been added to a repository. Let's say an equivalent of openssh with a back door, and capability to send details of username password etc was placed in such a third-party repository. If having even one rooted machine is bad, allowing/requiring "enough" rooted machines to know they are rooted, go to a voting page, and begin voting against a package / repo would take a long time to achieve anything, but in the mean time more and more people are getting the bad bits. Having said that, forcing a positive / negative opinion to be given during the process of removing a package could be somewhat interesting eg 467 users rated package X 4/10, and kept it installed for an average 240 days, where it was run an average 5 times per week. Distribution curve graphs could be more useful than an individual ranking number. Of course, its a free world, and few people can stop any third party hosting what ever it likes (bad, good, stealth...voting systems). For themselves. Not by a group of anonymous someone elses (hey that's not a word). Only one package needs to be evil. And that would destroy the reputation of that repo forever, whether it was purposely done by the repo owner, a contributor, or via hacking. Captcha ? It seems bots are getting close to reliably getting through these in like 20% of the time they are shown (see virusbulletin site). Interested parties on each article reviewing changes, and with the capability to delete changes ? So the vote system would have to have an admin who would be able to override the votes tracked, and bring the counted vote total down or up at will, who do you think should be the umpire ? Did you notice Paul Frields follow up email in fedora-announce: http://forums.fedoraforum.org/showthread.php?p=1193205 See how subtle an evil doer could be; from what I read, it wouldn't have taken much more for this intrusion to have been a huge problem for every fedora user (eg passwords stolen), and yet no one would have known that there are any issues. And this is a site with dedicated staff running a large system. The risk has to be higher for smaller repos who may lack dedicated staff. I think even inter repository or distro rivalries could create voting influences. eg what happens to a web site that gets /.'ed, quote a few do not survive the increase in traffic that such reference sites cause. And are willing to put their name and email on that recommendation in public, then it is their reputation as recommender that is on the line. If you summarize it down to a vote by numbers only, anything can be done: - false vote up a bad repo / package - false vote down a perfect repo ! Have a look at sourceforge rankings - if you wanted to publicize your oss, wouldn't you do anything to enhance your rankings, by understanding how they are calculated, and attemping to push your name up the list ? However, this shouldn't stop you from trying to rephrase the problem, step back, and look at the bigger picture, without getting into details like voting. I think it would be worthwhile having an enhancement that stores multiple keywords about specific software, so that you can search for software like "digital tv viewer usb", or "microsoft word document converter" and get a list of well described programs, with pretty icons, links to home page, whether the site has an ssl identity and so forth. It would have to be tricky to have an open source voting system that a bad guy couldn't use the source code of to intricately understand how they can trick the system. DaveT.