> > That's exactly it. There's no effective tracking of security problems, > > and some people don't see this as a problem. That makes it extremely > > difficult for others to see what needs to be done. > > Do you guys see this as a de facto state with no solution, or is > a good solution simply waiting to be found? FWIW, Gentoo uses bugzilla to track security issues. // Ulf