Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: "Kurt Lieber" <klieber@g.o>
Subject: Re: Days of yore
Date: Mon, 16 Apr 2007 08:32:51 -0500
On 4/16/07, Calum <caluml@...> wrote:
> But the infrastructure is already in place for GLSA's.

With all due respect, you haven't the faintest idea how much work it
takes to issue a GLSA.  It's not a simple matter of typing some stuff
in an email and hitting send.  You have to chase devs down and get
them to patch their stuff.  You have to chase arch maintainers down
and get them to test things and mark them stable.  You have to chase
security people down to draft the GLSA.  You have to chase more
security people down to peer review the GLSA.

I don't know that we've ever formally quantified how much time an
average GLSA takes, but my  semi-educated guess would be in the
neighborhood of 10 hours per package.

Now, take that process and multiply it by the number of -sources in
the tree and you can start to get an idea for how much time it takes
to issue kernel updates.

So, again, #gentoo-security is where you can start being part of the solution.

--kurt
-- 
gentoo-security@g.o mailing list


Replies:
Re: Days of yore
-- William L. Thomson Jr.
References:
Days of yore
-- Calum
Re: Days of yore
-- Lars Hartman
Re: Days of yore
-- Kurt Lieber
Re: Days of yore
-- Calum
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: Days of yore
Next by thread:
Re: Days of yore
Previous by date:
Re: Days of yore
Next by date:
Re: Days of yore


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.