From nobody Thu Mar 28 20:43:15 2024 X-Original-To: alpine-devel@lists.alpinelinux.org Delivered-To: alpine-devel@lists.alpinelinux.org Received: from ey-out-2122.google.com (ey-out-2122.google.com [74.125.78.24]) by lists.alpinelinux.org (Postfix) with ESMTP id 2A26417005F33 for ; Mon, 9 Mar 2009 12:51:11 +0000 (UTC) Received: by ey-out-2122.google.com with SMTP id 25so189520eya.13 for ; Mon, 09 Mar 2009 05:51:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=ckem/m49cFjkedPRuhj3UlSmholPF5UKhS0zzDq0ni0=; b=CfO3iYlV1TKXbyQP3WeK8GhmVqmWDyqveaHhbJMLtDYYyTNYE+IrMoZzUtJNdnEJNw lRLGpQ3GjxMLyDjYbdQrR8uGpiWW5BflFbImvcbtWf8RaQmz0EOwk2CcdR7WIUOGRt5E TrIC4YqO+r8cTmgSGB3+dYBF1SUxyfDVtgCsk= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=IxASQmrThzOpVHYPPTdU05DGSFfYr3iHUp8CkL8C/u2x5BlrgUVENrF7kwL4tbnEf9 QFYtnvw0vYjDvGVVU75HHFCxgv4SA5BnJurYrfVg+SbqN6dGULSw4dsf9MTYV0s7j5mY 3XBGPsdSZNUgeXOvm+bMwdcqsReUBN1KLbD58= X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: MIME-Version: 1.0 Received: by 10.216.8.79 with SMTP id 57mr2060119weq.202.1236603070024; Mon, 09 Mar 2009 05:51:10 -0700 (PDT) In-Reply-To: References: <1236333892.1916.95.camel@nc> Date: Mon, 9 Mar 2009 15:51:10 +0300 Message-ID: Subject: [alpine-devel] Alpine Linux project management From: Ilya Strelkin To: alpine-devel@lists.alpinelinux.org Content-Type: multipart/alternative; boundary=0016364c7bcdb78e5f0464af16b4 --0016364c7bcdb78e5f0464af16b4 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Dear Natanael! I am interested to volunteer in that area. Perhaps, we may have - security alert mailing list - wiki-like system for security alert log and related recommendations, tasks and code/packages updates references Iljya > Security manager > ================ > This role means following security lists and figure out what things > affects us. then take the neccessary steps to make sure those bugs are > fixed and make annoucements etc. I think we would need a security > mailing list and some kind of bug database. This roel does not really > require any coding skills either, but it requires interest for security > issues, bugs etc. > > --0016364c7bcdb78e5f0464af16b4 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable
Dear Natanael!

I am interested to volunte= er in that area.
Perhaps, we may have
=A0=A0 - security alert mailin= g list
=A0=A0 - wiki-like system for security alert log and related reco= mmendations, tasks and code/packages updates references

Iljya




=A0
Security manager
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
This role means following security lists and figure out what things
affects us. then take the neccessary steps to make sure those bugs are
fixed and make annoucements etc. I think we would need a security
mailing list and some kind of bug database. This roel does not really
require any coding skills either, but it requires interest for security
issues, bugs etc.



--0016364c7bcdb78e5f0464af16b4-- --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org --- From nobody Thu Mar 28 20:43:15 2024 X-Original-To: alpine-devel@lists.alpinelinux.org Delivered-To: alpine-devel@lists.alpinelinux.org Received: from mail-ew0-f170.google.com (mail-ew0-f170.google.com [209.85.219.170]) by lists.alpinelinux.org (Postfix) with ESMTP id E223317005F33 for ; Tue, 10 Mar 2009 13:27:15 +0000 (UTC) Received: by ewy18 with SMTP id 18so1321379ewy.25 for ; Tue, 10 Mar 2009 06:27:14 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:subject:from:to:cc :in-reply-to:references:content-type:date:message-id:mime-version :x-mailer:content-transfer-encoding; bh=5fvWEoL9mK2JbKrdRjEAetjaO+sC+O7Di3rl1ZEbuDY=; b=sXLNfyp5XGuYzNa1fQaID6HMzR5r0P+4WS7M2aG/NZjxR/SFMoNjSHhYi+nK8VDsV/ zybGoUKEaJo6l7IQSoftb7fvDf6UvUVI8KWijzJJ7Vyla/cSBzrKuOQP5/5DIX2Yu3uv NAVvY4xDqdUbzCQE3WHk9FvL8ytt/c6+sJVJs= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=subject:from:to:cc:in-reply-to:references:content-type:date :message-id:mime-version:x-mailer:content-transfer-encoding; b=G8Oq46e1btm2bsAeQVvPcrOZ6sYvl/FDrNGuiqFmBq9IUMeGRqnH5TEO6s8FYpLgvm A8EunqD6d59jUvDkCQGAX6wmidJ10W+z3Bq51ALoCuAHs/0wQkm6ZleaeewYP2XH2m61 v64OAkyJF0mDZdgr0ZoVgdWUsVY+IxL4Hhp4k= Received: by 10.216.23.72 with SMTP id u50mr2687961weu.178.1236691634242; Tue, 10 Mar 2009 06:27:14 -0700 (PDT) Received: from ?10.65.65.1? (ti211310a081-0173.bb.online.no [85.164.0.173]) by mx.google.com with ESMTPS id k10sm9647106nfh.23.2009.03.10.06.27.13 (version=SSLv3 cipher=RC4-MD5); Tue, 10 Mar 2009 06:27:13 -0700 (PDT) Subject: Re: [alpine-devel] Alpine Linux project management From: Natanael Copa To: Ilya Strelkin Cc: alpine-devel@lists.alpinelinux.org In-Reply-To: References: <1236333892.1916.95.camel@nc> Content-Type: text/plain Date: Tue, 10 Mar 2009 14:27:11 +0100 Message-Id: <1236691631.28727.24.camel@nc> X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: Mime-Version: 1.0 X-Mailer: Evolution 2.24.5 Content-Transfer-Encoding: 7bit On Mon, 2009-03-09 at 15:51 +0300, Ilya Strelkin wrote: > Dear Natanael! > > I am interested to volunteer in that area. ok. nice! > Perhaps, we may have > - security alert mailing list Any sugguestion to the name of such mailing list? we currently only have alpine-devel. > - wiki-like system for security alert log and related > recommendations, tasks and code/packages updates references Do you have any suggestions what wiki (or other system) we can use for this? To me it sounds more like a news site or similar. The wiki idea is that anybody can modify contents and i doubt we want security alerts be modified by anonymous. This should probably be integrated with the bugtracker (whatever we end up with). > > Iljya > > > > > > > Security manager > ================ > This role means following security lists and figure out what > things > affects us. then take the neccessary steps to make sure those > bugs are > fixed and make annoucements etc. I think we would need a > security > mailing list and some kind of bug database. This roel does not > really > require any coding skills either, but it requires interest for > security > issues, bugs etc. > > > > --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org --- From nobody Thu Mar 28 20:43:15 2024 X-Original-To: alpine-devel@lists.alpinelinux.org Delivered-To: alpine-devel@lists.alpinelinux.org Received: from ey-out-2122.google.com (ey-out-2122.google.com [74.125.78.24]) by lists.alpinelinux.org (Postfix) with ESMTP id 79BAE17005F3F for ; Wed, 11 Mar 2009 10:35:45 +0000 (UTC) Received: by ey-out-2122.google.com with SMTP id 25so359230eya.13 for ; Wed, 11 Mar 2009 03:35:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type; bh=mwsuduLqSKUIClwLih/Jg/0jhRfQmRqWMVaYDY/4bEc=; b=Lg9AoR0vuokURdj6SsfxmD5drKsfUMRMo/t2sUpH2IL3oMqix0QpxYgon59Le61+Bj TGdQepbRRBk7Kd/a/Ob6LzGVt5EQfyJ/JJRGlBOwFkuy2TvEGYvFaL4/Itj81sSB/B9C Iv3TqUoZxVhmw+HsjZANFoKR8KS32WBIq1SyA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=DMiaNFOxNVtDSbSEWKkNIlNVmBlBUlDFxUOqHMwvLdGXe9w4dHHrwnmjPQ8x8cGXRB HfeDMdKCnjqRV5JXMwoh+JRA3PLxx9avIF5OehBavAJEuowcXMVGPtnaBV2+B5KjUyLg NPTCf6uGI0c95O48dyHwWUaIKYcQY54PgBcMM= X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: MIME-Version: 1.0 Received: by 10.216.55.201 with SMTP id k51mr3297945wec.184.1236767742470; Wed, 11 Mar 2009 03:35:42 -0700 (PDT) In-Reply-To: <1236691631.28727.24.camel@nc> References: <1236333892.1916.95.camel@nc> <1236691631.28727.24.camel@nc> Date: Wed, 11 Mar 2009 13:35:42 +0300 Message-ID: Subject: Re: [alpine-devel] Alpine Linux project management From: Ilya Strelkin To: Natanael Copa Cc: alpine-devel@lists.alpinelinux.org Content-Type: multipart/alternative; boundary=0016e6dbe2aef5ac7e0464d56d53 --0016e6dbe2aef5ac7e0464d56d53 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit > Any sugguestion to the name of such mailing list? we currently only have > alpine-devel. alpine-security[-alert]@lists.alpinelinux.org or since "alpine" word is already in then just security-alerts@lists.alpinelinux.org security-advisory@lists.alpinelinux.org security-notifications@lists.alpinelinux.org > > - wiki-like system for security alert log and related > > recommendations, tasks and code/packages updates references > > Do you have any suggestions what wiki (or other system) we can use for > this? 1. Sputnik - LUA based - simple but yet powerful, inlcudes bugtracker ( http://spu.tnik.org) 2. TikiWiki - includes Forums, Blogs, Image Gallery, Bug tracker 3. MediaWiki - it is well known and feature rich system Also there are several good CMS, but they ussually require heavy web technologies.. > To me it sounds more like a news site or similar. The wiki idea is that > anybody can modify contents and i doubt we want security alerts be > modified by anonymous. You are right, although wiki systems have "open" nature but proper ACL solves problem. The idea is the ability to modify content easy but securely! > > This should probably be integrated with the bugtracker (whatever we end > up with). yes. Sputnik or TikiWiki have intergated BugTracker. Iljya --0016e6dbe2aef5ac7e0464d56d53 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable
Any sugguestion to the name of such mailing list? we currently on= ly have
alpine-devel.
> =A0 =A0- wiki-like system for security alert log and related
> recommendations, tasks and code/packages updates references

Do you have any suggestions what wiki (or other system) we can us= e for
this?

1. Sputnik=A0 - LUA based - simple but yet power= ful, inlcudes bugtracker (http://spu.tnik.o= rg)
2. TikiWiki - includes Forums, Blogs, Image Gallery, Bug tracker=
3. MediaWiki - it is well known and feature rich system

Also there = are several good CMS, but they ussually require heavy web technologies..=A0
To me it sounds more like a news site or similar. The wiki idea is that
anybody can modify contents and i doubt we want security alerts be
modified by anonymous.

You are right, although wiki sy= stems have "open" nature but proper ACL solves problem. The idea = is the ability to modify content easy but securely!



This should probably be integrated with the bugtracker (whatever we end
up with).

yes. Sputnik or TikiWiki have intergated Bug= Tracker.

=A0
Iljya

--0016e6dbe2aef5ac7e0464d56d53-- --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org --- From nobody Thu Mar 28 20:43:15 2024 X-Original-To: alpine-devel@lists.alpinelinux.org Delivered-To: alpine-devel@lists.alpinelinux.org Received: from mail-ew0-f170.google.com (mail-ew0-f170.google.com [209.85.219.170]) by lists.alpinelinux.org (Postfix) with ESMTP id 0096917005F3F for ; Wed, 11 Mar 2009 19:15:56 +0000 (UTC) Received: by ewy18 with SMTP id 18so137098ewy.25 for ; Wed, 11 Mar 2009 12:15:55 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:subject:from:to:cc :in-reply-to:references:content-type:date:message-id:mime-version :x-mailer:content-transfer-encoding; bh=q1rWlhxefZzzhX+Yc1S99RT5ZQO7UOnhP8bwFMD3WAo=; b=u5IqJcVKLv/UeE5LQFm6IX+Uz4i6w+iwPAUcBF48Pf2DiZIb9DKjNvZaKSd0oJ1kCS y4HelmsUHxV09L1GgKolTZ8At1NbG1E1K78+mlYZHMVU/iFlcVNdZX+rNbkVn64wi0HS ylgUfMi4foXYjQJh8iwsQwKFV4wCPSyg8VYyU= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=subject:from:to:cc:in-reply-to:references:content-type:date :message-id:mime-version:x-mailer:content-transfer-encoding; b=er4i2TpUXZUlBRd92NB7yyHyOjcV3xI2J49w4odJdMVvXJXHJ14UyGaL9ICaEBQOFM sTh1ASKD+WBLQNQFoySm3L7uWMBAwrTsb9JU+2/Uq7z5eUjrrtQTLvv3hIQ8O/RI+1rx jvbFJEShLjzSZxQeOhk6kWcfH8yJJhR4Sl9wQ= Received: by 10.216.29.84 with SMTP id h62mr3614131wea.122.1236798954042; Wed, 11 Mar 2009 12:15:54 -0700 (PDT) Received: from ?10.65.96.28? (ti211310a081-0173.bb.online.no [85.164.0.173]) by mx.google.com with ESMTPS id k5sm277039nfh.27.2009.03.11.12.15.49 (version=SSLv3 cipher=RC4-MD5); Wed, 11 Mar 2009 12:15:52 -0700 (PDT) Subject: Re: [alpine-devel] Alpine Linux project management From: Natanael Copa To: Ilya Strelkin Cc: alpine-devel@lists.alpinelinux.org In-Reply-To: References: <1236333892.1916.95.camel@nc> <1236691631.28727.24.camel@nc> Content-Type: text/plain Date: Wed, 11 Mar 2009 20:15:34 +0100 Message-Id: <1236798934.7611.21.camel@ncopa-laptop> X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: Mime-Version: 1.0 X-Mailer: Evolution 2.24.3 Content-Transfer-Encoding: 7bit On Wed, 2009-03-11 at 13:35 +0300, Ilya Strelkin wrote: > > Any sugguestion to the name of such mailing list? we currently > only have > alpine-devel. > > alpine-security[-alert]@lists.alpinelinux.org > > or since "alpine" word is already in then just > > security-alerts@lists.alpinelinux.org > security-advisory@lists.alpinelinux.org > security-notifications@lists.alpinelinux.org I'm ok with any of those names. security-alerts is shortest so i'd go for that. > > - wiki-like system for security alert log and related > > recommendations, tasks and code/packages updates references > > > Do you have any suggestions what wiki (or other system) we can > use for > this? > > 1. Sputnik - LUA based - simple but yet powerful, inlcudes bugtracker > (http://spu.tnik.org) > 2. TikiWiki - includes Forums, Blogs, Image Gallery, Bug tracker > 3. MediaWiki - it is well known and feature rich system we use mediawiki today. > Also there are several good CMS, but they ussually require heavy web > technologies.. > > To me it sounds more like a news site or similar. The wiki > idea is that > anybody can modify contents and i doubt we want security > alerts be > modified by anonymous. > > You are right, although wiki systems have "open" nature but proper ACL > solves problem. The idea is the ability to modify content easy but > securely! The goal with those things are to make it clear that we take security seriously. It should give users, decision makers trust. What I am sceptic about with the concept wiki is that people think of it as something you can not trust 100% since anyone can change it (even if that is not the case ofcourse). So I think that if we say "for security information see wiki" will give a non-trust impression, if you understand. I 100% agree with it must be easy to maintain and update, and it might be a wiki. I just think we cannot make it very visible that it is a wiki. > > > > > This should probably be integrated with the bugtracker > (whatever we end > up with). > > yes. Sputnik or TikiWiki have intergated BugTracker. I think we will end up with redmine for bugtracking, which have an integrated wiki. We have a test here: http://redmine.nethq.net If you really want a wiki, do you think that wiki could work? I doubt that we can hide that it is a wiki, but... we could have a look at what other projects do too, i.e ubuntu, debian, openbsd, ipcop etc. > > Iljya thanks! --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org --- From nobody Thu Mar 28 20:43:16 2024 X-Original-To: alpine-devel@lists.alpinelinux.org Delivered-To: alpine-devel@lists.alpinelinux.org Received: from mail.squbes.com (squbes.com [208.74.142.49]) by lists.alpinelinux.org (Postfix) with ESMTP id D2E6317005F3F for ; Thu, 12 Mar 2009 03:02:36 +0000 (UTC) Received: from serenity.UTIL.wtbts.net (unknown [172.20.173.25]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: nangel@tetrasec.net) by mail.squbes.com (Postfix) with ESMTPSA id 1124B50001CA7; Thu, 12 Mar 2009 03:02:36 +0000 (UTC) Message-ID: <49B87B43.8030204@nothome.org> Date: Wed, 11 Mar 2009 23:02:27 -0400 From: Nathan Angelacos User-Agent: Thunderbird 2.0.0.19 (Macintosh/20081209) X-Mailinglist: alpine-devel Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: MIME-Version: 1.0 To: Natanael Copa CC: Ilya Strelkin , alpine-devel@lists.alpinelinux.org Subject: Re: [alpine-devel] Alpine Linux project management References: <1236333892.1916.95.camel@nc> <1236691631.28727.24.camel@nc> <1236798934.7611.21.camel@ncopa-laptop> In-Reply-To: <1236798934.7611.21.camel@ncopa-laptop> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Natanael Copa wrote: > On Wed, 2009-03-11 at 13:35 +0300, Ilya Strelkin wrote: >> Any sugguestion to the name of such mailing list? we currently >> only have >> alpine-devel. >> >> alpine-security[-alert]@lists.alpinelinux.org >> >> or since "alpine" word is already in then just >> >> security-alerts@lists.alpinelinux.org >> security-advisory@lists.alpinelinux.org >> security-notifications@lists.alpinelinux.org > > I'm ok with any of those names. security-alerts is shortest so i'd go > for that. > I'm happy to set up any mailing list with any name. But if we are going for short, then: security@lists.alpinelinux.org Or, what if we went with the CERT theme? cert-alerts@lists.alpinelinux.org alpine-cert@lists.alpinelinux.org I kinda like alpine-cert - could have its own web-page and RSS feed... But again, no strong feelings - just a couple of thoughts --- Unsubscribe: alpine-devel+unsubscribe@lists.alpinelinux.org Help: alpine-devel+help@lists.alpinelinux.org ---