Extras Security Policy

Ville Skyttä ville.skytta at iki.fi
Thu Sep 8 16:30:11 UTC 2005


On Thu, 2005-09-08 at 18:10 +0200, Ralf Corsepius wrote:
> On Thu, 2005-09-08 at 16:01 +0200, Michael Schwendt wrote:

> > If at all => bugzilla!
> As long as maintainers treat bugzilla as /dev/null, and do not react
> upon notifying them on PM, this is not a solution.

Examples?  Public humiliation could help ;)

> > Rather than "any packager touching any package", I'd prefer official
> > co-maintainers who divide the package maintenance efforts and take
> > care of a package beyond occasional security patches.

That can be already done by just agreeing between the folks who want to
co-maintain a package and eg. adding the maintainers' addresses to
initialcclist in owners.list/Bugzilla if so desired.

> And I'd suggest a "task force" with "card blanche" access to all packages.

+1




More information about the fedora-extras-list mailing list