Re: goals for hardening Debian: ideas and help wanted

To: Paul Wise <pabs@debian.org>
Cc: debian-devel@lists.debian.org, debian-security <debian-security@lists.debian.org>
Subject: Re: goals for hardening Debian: ideas and help wanted
From: Guido Günther <agx@sigxcpu.org>
Date: Tue, 29 Apr 2014 08:55:33 +0200
Message-id: <[🔎] 20140429065533.GA3195@bogon.m.sigxcpu.org>
Mail-followup-to: Guido Günther <agx@sigxcpu.org>, Paul Wise <pabs@debian.org>, debian-devel@lists.debian.org, debian-security <debian-security@lists.debian.org>
In-reply-to: <[🔎] CAKTje6FK8+7X-HrHNV-+jhN2yRnKouoBgZY6c7HSG5E3OZeM_A@mail.gmail.com>
References: <[🔎] 1398308259.7980.49.camel@chianamo> <[🔎] 20140429020744.26376063@eunet.rs> <[🔎] CAKTje6FK8+7X-HrHNV-+jhN2yRnKouoBgZY6c7HSG5E3OZeM_A@mail.gmail.com>

On Tue, Apr 29, 2014 at 11:35:26AM +0800, Paul Wise wrote:
> On Tue, Apr 29, 2014 at 8:07 AM, Marko Randjelovic wrote:
> 
> > - security patches should be clearly marked as such in every *.patch
> >   file
> 
> That sounds like a good idea, could you add it to the wiki page?

It's not always easy to say wether a patch is security relevant but for
the obvious ones (e.g. those with a CVE assigned) I put them into

  debian/patches/security

and noticed other packages doing the same. This makes it simple to
distinguish them in i.e. gitweb without having to look into every patch
for the DEP-3 header.

Cheers,
 -- Guido

Reply to:

References:
- goals for hardening Debian: ideas and help wanted
  - From: Paul Wise <pabs@debian.org>
- Re: goals for hardening Debian: ideas and help wanted
  - From: Marko Randjelovic <markoran@EUnet.rs>
- Re: goals for hardening Debian: ideas and help wanted
  - From: Paul Wise <pabs@debian.org>

Prev by Date: Re: goals for hardening Debian: ideas and help wanted
Next by Date: Re: goals for hardening Debian: ideas and help wanted
Previous by thread: Re: goals for hardening Debian: ideas and help wanted
Next by thread: Re: goals for hardening Debian: ideas and help wanted
Index(es):
- Date
- Thread