Re: Security reviews for new packages

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

>>>>> "KF" == Kevin Fenzi <kevin@xxxxxxxxx> writes:

KF> I'm no expert, but I could take a look I suppose.

Another pair of eyes won't hurt, of course, but honestly I don't know
what's involved in an actual secuity review.

KF> How about we make a F_SECURITY_REVIEW tracker bug, and any review
KF> that needs extra security attention is made to block that bug.

Well, that would work but I'm thinking it's a bit premature to talk
about it until we know that there's at least one proper trained
security person who will actually pay attention to it.

I just don't want to have the security team's first contact with a
package like this to be the posting of CVEs.

 - J<

Fedora-security-list mailing list

[Home]     [Fedora Legacy List]     [Fedora Maintainers]     [Fedora Desktop]     [Red Hat 9 Bible]     [Fedora Bible]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Coolkey]     [Fedora Tools]

Powered by Linux