Hello gang, right now the people in the "To" line are the Fedora Security
Response Team (and me of course). I admit I don't know all of you terribly
well, but that shall change in the near future. This initial startup work
requires a leap of faith of sorts. If you fall silent for too long expect
to get the boot.
Here are the names to go with the email addresses.
Chris Ricker
Dennis Gilmore
Jason L Tibbitts
Jesse Keating
You have commit access to the fedora-security CVS repository. DON'T SCREW
IT UP!
You can check it out here:
cvs -d :ext:cvs.fedora.redhat.com:/cvs/fedora co fedora-security
This repository currently consists of two directories, tools and audit.
The tools directory is pretty self explanatory, I'll go into detail on the
audit directory.
The files named fe4 and fe5 are ours. The files named fc4 and fc5 are not.
You do not have write access to them, we may someday. We are using a
shared directory like this since it's expected this group will be able to
help with issues in Core when it's opened up to the world.
Look at the fc4 and fc5 files. That's the format we should have the fe4
and fe5 files in. If you have any questions, please let me know. I know
this information isn't terribly clear. It shall be documented, but for now
this is the easiest way to bootstrap this team.
We should try to keep all conversations public on the fedora-security-list.
We don't currently have a private list, we lack the ability to deal with
embargo issues at this time, so I don't see a need for it. If anyone feels
we need one, that discussion can be had.
Sink or swim I guess :)
--
JB
