On Fri, Mar 04, 2005 at 07:48:53PM +0100, Javier Fernández-Sanguino Peña wrote:
> I believe that having a paper outline the current status of security
> support in Debian and what things need to be improved both in the Debian
> operating system and the project to improve it would be a big eye-opener to
> some of the issues the Security Team is having. Also, providing (in a
> workshop) some basic knowledge so that maintainers can security-audit their
> packages would save a lot of issues in the long term.
Lars Wirzenius asked for that in this blog entry, so it seems like people
would be interested:
http://liw.iki.fi/liw/log/2005-01.html#20050128c
"An overview of our track record for releasing fixes for security problems.
Possibly combined with a talk about looking for common types of security
problems in one's packages and the proper ways of releasing fixes by
co-ordinating the release of the fix with other distros and the upstream
developers."
> Does anyone want to help out with this?
Not in the next couple of weeks/months, at least. I really must try to
concentrate on my university essay for a while (it's about computer
security in Swedish libraries, of all subjects).
// Ulf Härnhammar
|
