On Wednesday, April 10, 2013 03:55:46 PM Miloslav Trmač wrote: > Hello all, > the discussion has somewhat died down... If you have a specific proposal > for a change in policy, please add it to > https://fedorahosted.org/fesco/ticket/1104 ; hard data that demonstrate the > impact, if any, in a situation relevant to Fedora (in particular, taking > into account prelink as it is deployed by default) would be very welcome > but is not a strict requirement. > > (This is not intended to cut off the discussion on the mailing list, only > to make it clear to FESCo whether there is any proposal for change or > whether we are happy enough with the current status.) I don't think there is any need to extend the set of packages that _should_ get hardening. The current guidelines are sufficient. What is not happening is the packages that have apps that fit the need to be hardened are not getting the proper hardening. I have opened dozens of bugs on the "core" packages that matter, but even those bz are still not complete. Bottom line, we just need more prodding of maintainers that have apps that need hardening based on current guidelines. -Steve -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel