[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bad press again...




On Sun, 28 Aug 2005, Florian Weimer wrote:

> AFAIK, you can only blame the security team for lack of communication.

nah ... they're doing fine .. to the extent is needed ??

if it's important... they will post dsa ??

> They were ready to upload the packages, but the infrastructure to
> process them wasn't working.

yup

it sems most of the who/what/when/where/why of the infastructure
is a separate issue from "security"

what i think is needed is an automated script that checks
debian against known exploits or a way to verify that
the exploits/vulnerability does not affect debian

	- both are non-trivial tasks to and lots
	of presumably automated testing and time
 
c ya
alvin



Reply to: