[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#129604: general: Social Contract: We Do Hide Problems

On Fri, Jan 18, 2002 at 10:30:37PM +0000, Eric E Moore wrote:
> I personally wouldn't go so far as to say that keeping something quiet
> is *never* appropriate, but I'd say that prompt and full disclosure is
> appropriate at least as often.

take a look at http://www.wiretrip.net/rfp/policy.html
(version 2 as of 2002-01-18T22:35:35+0000)

if you read the Debian project as being in the role of maintainer, then
paragraph F comes in:

F. The MAINTAINER is encouraged to coordinate a joint public release/
   disclosure with the ORIGINATOR, so that advisories of problem and
   resolution can be made available together.

read the whole of the RFPolicy, and then see where you stand. if you
feel the whole thing is in error, please take it up with the BugTraq
community, so you can have a larger audience for feedback.

a member of the BugTraq community

Reply to: