1 |
On Mon, Jan 16, 2006 at 12:29:29AM +0100, Gunnar Wrobel wrote: |
2 |
> Concerning the goals I have a question: How much of a problem do we |
3 |
> currently really have concerning man power in web-apps? If I look at |
4 |
> bugzilla, web-apps seems to be in pretty good shape or am I mistaken |
5 |
> there? |
6 |
|
7 |
We're in good shape now, but we weren't even a couple of months ago. At this |
8 |
point, we should be fine if we take care of ongoing maintenance, but things can |
9 |
_quickly_ turn ugly. As a matter of fact, I'll be offline for the better part of |
10 |
the summer, possibly as early as May, and I'd really like to make sure I don't |
11 |
spend another 4 months crawling through 150+ bugs when I return in September. |
12 |
|
13 |
> What is hard for me to judge is what kind of impact the security |
14 |
> problems had during the last year. What were the main problems for the |
15 |
> web-apps herd? |
16 |
|
17 |
There may have been a few security bugs to which we did not react as urgently as |
18 |
we should have. I don't know any specific instances because I wasn't around, and |
19 |
when I was, we reacted quickly :) Not to say that I'm the only person doing the |
20 |
work, just can't speak for all security issues we've had. |
21 |
|
22 |
As far as I'm concerned, the main problem is that we were badly out of sync with |
23 |
upstream for a few months when I was on hiatus. That means dissatisfied users, |
24 |
lots of bugs, potential security issues, etc etc etc. |
25 |
|
26 |
> Depends pretty much on whether we decide to clean the tree and move |
27 |
> packages out. Once we get an estimate on what amount of package we |
28 |
> want to support for the main portage tree we could decide how to |
29 |
> distribute that to different categories. |
30 |
|
31 |
Yes. |
32 |
|
33 |
-- |
34 |
Renat Lumpau |
35 |
all things web-apps |
36 |
GPG key id #C6A838DA on http://pgp.mit.edu |
37 |
Key fingerprint = 04AF B5EE 17CB 1000 DDA5 D3FC 1338 ADC2 C6A8 38DA |