FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian Development

 
 
LinkBack Thread Tools
 
Old 04-16-2008, 12:05 PM
Lars Wirzenius
 
Default How to manage security issues when the maintainer is not the developer

On ke, 2008-04-16 at 13:55 +0200, Andrea De Iacovo wrote:
> How do you think a maintainer should manage security issues when he is
> not the package developer? Should he/she either work alone to make
> patches or wait for the upstream patches/relases that solve the bug?

If the package maintainer in Debian can do something to make a security
problem be fixed faster, they should do that. If they can provide the
patch themselves, good. If they can't do that, perhaps they can help or
encourage or recruit someone else to do that, also good. If nobody can
do anything, bad.

The point is to get the problem fixed, not to worry about whose
responsibility it is or who gets the credit or what makes someone look
bad.



--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 

Thread Tools




All times are GMT. The time now is 03:44 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org