Re: ampache security audit

To: Debian Mentors <debian-mentors@lists.debian.org>
Subject: Re: ampache security audit
From: Bernd Zeimetz <bernd@bzed.de>
Date: Wed, 04 Jul 2007 03:24:30 +0200
Message-id: <[🔎] 468AF6CE.5010307@bzed.de>
In-reply-to: <[🔎] 468AE28B.50802@cableone.net>
References: <[🔎] 468AE28B.50802@cableone.net>

Hi,

>  You can look at ampaches Code Philosophy at
> https://ampache.bountysource.com/wiki/Code_Philosophy
> 
> and ampaches Coding Standards at
> https://ampache.bountysource.com/wiki/Coding_Standards

that's nice to read, but people who write the code should not audit it
imho. It's like reading a book you've written, you won't find the
mistakes. Also it's nice to have a philosophy and standards, but there
must be somebody who makes sure that they're enforced.
Especially for such *insert curse words here* languages like php it's
very important that somebody from the outside of the project audits the
code, for example the package maintainer.

-- 
Bernd Zeimetz
<bernd@bzed.de>                         <http://bzed.de/>

Reply to:

References:
- ampache security audit
  - From: Charlie <cjsmo@cableone.net>

Prev by Date: Re: Looking for sponsor for single NMU of monotone packages
Next by Date: RE: ampache security audit
Previous by thread: ampache security audit
Next by thread: RE: ampache security audit
Index(es):
- Date
- Thread