Gentoo Archives: gentoo-security

From: Robert Buchholz <rbu@g.o>
To: gentoo-security@l.g.o
Cc: Mansour Moufid <mansourmoufid@×××××.com>
Subject: Re: [gentoo-security] the Gentoo Audit project and dev-util/splint
Date: Thu, 11 Jun 2009 14:13:26
Message-Id: 200906111613.22362.rbu@gentoo.org
In Reply to: Re: [gentoo-security] the Gentoo Audit project and dev-util/splint by Mansour Moufid
1 Hello Mansour,
2
3 On Wednesday 10 June 2009, Mansour Moufid wrote:
4 > > But keep in mind there is a certain amount of work that comes with
5 > > this.
6 >
7 > How much time would members typically put in, say, per week? I
8 > imagine it's difficult to estimate an 'average' -- since most of the
9 > time spent is probably in actually reviewing source code -- but I'm
10 > looking forward to contributing a decent number of hours a week as
11 > part of this project. Effort is certainly no deterrent.
12
13 As with most oss projects, you put in the amount of time you are
14 comfortable with. There's usually more items on the TODO stack than you
15 can handle anyway, so you either let it rest for a few days/weeks when
16 you are busy, or work off large chunks when you have some time to burn.
17
18 To get you started, I would suggest you look for tasks that sound
19 interesting. There are several bugs that need attention. Some of them
20 are in the "Gentoo Security/Audit" section of Bugzilla. Mondo-rescue's
21 latest version needs to be looked at, for example:
22 https://bugs.gentoo.org/show_bug.cgi?id=106497
23
24 There is a list of packages bundling libraries. Some of these might have
25 security impact:
26 https://bugs.gentoo.org/showdependencytree.cgi?id=251464
27
28 There's also some of the "Gentoo Security/Vulnerabilities" bugs that
29 need attention. If you're seeking to discover new vulnerabilities
30 instead of working on details of existing bugs, can literally start
31 anywhere you like.
32
33 Contact us in IRC or via Jabber if you need assistance.
34
35 Robert

Attachments

File name MIME type
signature.asc application/pgp-signature