1 |
On 16.06.2013 06:01, "Paweł Hajdan, Jr." wrote: |
2 |
> On 6/9/13 7:22 AM, Alex Legler wrote: |
3 |
>> I'd appreciate some input on below plan to move project pages to the Wiki: |
4 |
> |
5 |
> Alex, thanks for working on this! Some feedback: |
6 |
> |
7 |
> 1. How will the project pages be protected against "unwanted" edits? I |
8 |
> think it's valuable to have some official pages where you know only |
9 |
> Gentoo devs can edit them. |
10 |
|
11 |
The Project: namespace is restricted to only allow users in the |
12 |
developer group to edit. |
13 |
|
14 |
> |
15 |
> 2. How will the staffing needs page be updated after dropping gorg? |
16 |
|
17 |
You create a subpage for each staffing need, filling in information |
18 |
using a form. Semantic magic aggregates these, and you'll get a template |
19 |
to include for your project page to list the ones for your project |
20 |
specifically. |
21 |
|
22 |
> |
23 |
> 3. How secure is the wiki? Do we have regular backups and security |
24 |
> updates procedures in place? I know you're member of the security team |
25 |
> and infra team is doing its job well, but I just wanted to check. |
26 |
> Dynamic web applications arguably have bigger attack surface than |
27 |
> effectively a bunch of static files only editable after you gain server |
28 |
> access. |
29 |
|
30 |
It's part of the usual infra backup, and I follow upstream release |
31 |
announcements and update accordingly. |
32 |
|
33 |
> |
34 |
> Paweł |
35 |
> |
36 |
> |
37 |
|
38 |
|
39 |
-- |
40 |
Alex Legler <a3li@g.o> |
41 |
Gentoo Security/Ruby/Infrastructure |