Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: Christian Kauhaus <kc@...>
Subject: Re: No GLSA since January?!?
Date: Fri, 26 Aug 2011 19:06:35 +0200
Am 26.08.2011 18:55, schrieb Alex Legler:
> Compared to other distributions, our advisories have been rather detailed with
> lots of manually researched information. I'm not sure if we can keep up this
> very high standard with the limited manpower, but we'll try our best.

I see the point. I think it would be an achievement over the current situation 
(which is: no current GLSAs at all) to send out less detailed GLSAs. Even 
something short as: "$PACKAGE has vulnerabilities, they are fixed in $VERSION, 
for details see $CVE" would be immensely helpful.

Is the any viable way to get it at least to this point? Probably the largest 
part of such a task could be automated. This would lift the burden from the 
security maintainers.

Regards

Christian

-- 
Dipl.-Inf. Christian Kauhaus <>< · kc@... · systems administration
gocept gmbh & co. kg · forsterstraße 29 · 06112 halle (saale) · germany
http://gocept.com · tel +49 345 1229889 11 · fax +49 345 1229889 1
Zope and Plone consulting and development


Replies:
Re: No GLSA since January?!?
-- Kevin Bryan
Re: No GLSA since January?!?
-- Joost Roeleveld
References:
No GLSA since January?!?
-- Christian Kauhaus
Re: No GLSA since January?!?
-- Alex Legler
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: No GLSA since January?!?
Next by thread:
Re: No GLSA since January?!?
Previous by date:
Re: No GLSA since January?!?
Next by date:
Re: No GLSA since January?!?


Updated May 10, 2012

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.