[arch-general] Time for an arch-security mailing list?
Does anyone agree with this? If so how do I go about requesting the creation of such a list? The list would be for discussion around security in Arch, implementations and user/dev input etc. It seems like package signing has moved up the agenda now and I've also got a few things I'd like to suggest but I feel we'd be better served by a separate mailing list for security. Ananda
On Thu, Apr 29, 2010 at 8:08 PM, Ananda Samaddar <ananda@samaddar.co.uk> wrote:
Does anyone agree with this? If so how do I go about requesting the creation of such a list? The list would be for discussion around security in Arch, implementations and user/dev input etc. It seems like package signing has moved up the agenda now and I've also got a few things I'd like to suggest but I feel we'd be better served by a separate mailing list for security.
I don't think we should separate the discussion of package signing in another list, even more that we are only playing with ideas. There's a long way before the real implementation is started. -- A: Because it obfuscates the reading. Q: Why is top posting so bad? ------------------------------------------- Denis A. Altoe Falqueto -------------------------------------------
On 30/04/10 09:08, Ananda Samaddar wrote:
Does anyone agree with this? If so how do I go about requesting the creation of such a list? The list would be for discussion around security in Arch, implementations and user/dev input etc. It seems like package signing has moved up the agenda now and I've also got a few things I'd like to suggest but I feel we'd be better served by a separate mailing list for security.
We have a list for the integration of package signing into pacman... or in fact, anything related to the development of pacman. And from past discussions of package signing, I expect this slowly die over the next week with no actual progress made. I Security issues with packages should be reported to the bug tracker. Information on how to harden a system belongs in the wiki. Queries on securing your system to the forums or mailing lists (after reading the wiki, searching google etc...). I do not see what is not already covered. Allan
On 30/04/10 00:08, Ananda Samaddar wrote:
Does anyone agree with this? If so how do I go about requesting the creation of such a list? The list would be for discussion around security in Arch, implementations and user/dev input etc. It seems like package signing has moved up the agenda now and I've also got a few things I'd like to suggest but I feel we'd be better served by a separate mailing list for security.
I personally don't see any reason to create a security mailing list at this time. When people start complaining about the amount of security-related discussion on this list, that's when it's time to discuss a separate security mailing list. /M -- Magnus Therning (OpenPGP: 0xAB4DFBA4) magnus@therning.org Jabber: magnus@therning.org http://therning.org/magnus identi.ca|twitter: magthe
On 04/30/2010 01:06 AM, Magnus Therning wrote:
On 30/04/10 00:08, Ananda Samaddar wrote:
Does anyone agree with this? If so how do I go about requesting the creation of such a list? The list would be for discussion around security in Arch, implementations and user/dev input etc. It seems like package signing has moved up the agenda now and I've also got a few things I'd like to suggest but I feel we'd be better served by a separate mailing list for security.
I personally don't see any reason to create a security mailing list at this time. When people start complaining about the amount of security-related discussion on this list, that's when it's time to discuss a separate security mailing list.
/M
It's fairly easy to delete messages if you're not interested. I think the security stuff is interesting, even though I probably won't be able to help at all. -Brendan
On 05/01/2010 01:08 AM, Brendan Long wrote:
On 04/30/2010 01:06 AM, Magnus Therning wrote:
On 30/04/10 00:08, Ananda Samaddar wrote:
Does anyone agree with this? If so how do I go about requesting the creation of such a list? The list would be for discussion around security in Arch, implementations and user/dev input etc. It seems like package signing has moved up the agenda now and I've also got a few things I'd like to suggest but I feel we'd be better served by a separate mailing list for security.
I personally don't see any reason to create a security mailing list at this time. When people start complaining about the amount of security-related discussion on this list, that's when it's time to discuss a separate security mailing list.
/M
It's fairly easy to delete messages if you're not interested. I think the security stuff is interesting, even though I probably won't be able to help at all.
-Brendan
i don't mind if somebody send reports on this mailing list with subject that contains [security] -- Ionut
participants (6)
-
Allan McRae
-
Ananda Samaddar
-
Brendan Long
-
Denis A. Altoé Falqueto
-
Ionut Biru
-
Magnus Therning