[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: security.debian.org down?

On Tue, Feb 03, 2004 at 12:05:32PM +0100, Stephan Austermühle wrote:
> On Tue, Feb 03, 2004 at 11:49:30AM +0100, Martin Schulze wrote:
> > It would be very nice if people would actually ****READ**** the
> > announcement.  Why?  Because then they would learn that we cannot
> > update the website without the www-master service which is ON
> > klecker.
> Sorry for the inconvenience but you're a little to short. What do
> people that didn't subscribe to dozens of mailinglists? 

debian-news should be subscribed by everybody remotely interested in

> Right, they access www.debian.org and try to find a status note. It
> can't be that difficult to put a note on the webserver manually even
> without tool support. 

The problem is that we don't have 'the' webserver. We have a couple of
dozen mirrors, running www.debian.org in a dozen languages.

So manually changing 'the' www.debian.org does not help at all, as all
the other servers will not get that information.

> The primary source for information today is a web server, not a
> mailinglist! 

Not for the Debian project, sorry.

> So cool down, think it over and next time, please, please, please put
> a note on the webserver first. It is definitly possible, even without
> your www-master! A project like Debian should have this type of
> professionalism!

The exact same problem occured in late November when we had the security
compromise. Dozens of people asked why the information was not on the
website. That is why Joey was not very diplomatic on his second reply.

A lot of other people asked about this as well, but they actually read
the announcement when pointed to it, and understood that changing the
web site is not possible.


Reply to: