Comment by s_dev
4 years ago
>It shows there is a problem with the review process if it is not catching 100% of this garbage
What review process catches 100% garbage? It's a mechanism to catch 99% of garbage -- otherwise Linux kernel would have no bugs.
It does raise questions though. Should there be a more formal scrutiny process for less trusted developers? Some kind of background check process?
Runs counter to how open source is ideally written, but for such a core project, perhaps stronger checks are needed.
These researchers were in part playing on the reputation of their university, right? Now people at that university are no longer trusted. I'm not sure a more formal scrutiny process will bring about better results, I think it would be reasonable to see if the university ban is sufficient to discourage similar behavior in the future.