Re: Bug#129604: general: Social Contract: We Do Hide Problems
On Fri, Jan 18, 2002 at 10:30:37PM +0000, Eric E Moore wrote:
>
> I personally wouldn't go so far as to say that keeping something quiet
> is *never* appropriate, but I'd say that prompt and full disclosure is
> appropriate at least as often.
take a look at http://www.wiretrip.net/rfp/policy.html
(version 2 as of 2002-01-18T22:35:35+0000)
if you read the Debian project as being in the role of maintainer, then
paragraph F comes in:
F. The MAINTAINER is encouraged to coordinate a joint public release/
disclosure with the ORIGINATOR, so that advisories of problem and
resolution can be made available together.
read the whole of the RFPolicy, and then see where you stand. if you
feel the whole thing is in error, please take it up with the BugTraq
community, so you can have a larger audience for feedback.
-john
a member of the BugTraq community
Reply to: