Re: Expanding the list of "Hardened Packages"

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Wednesday, April 10, 2013 03:55:46 PM Miloslav Trmač wrote:
> Hello all,
> the discussion has somewhat died down...  If you have a specific proposal
> for a change in policy, please add it to
> https://fedorahosted.org/fesco/ticket/1104 ; hard data that demonstrate the
> impact, if any, in a situation relevant to Fedora (in particular, taking
> into account prelink as it is deployed by default) would be very welcome
> but is not a strict requirement.
> 
> (This is not intended to cut off the discussion on the mailing list, only
> to make it clear to FESCo whether there is any proposal for change or
> whether we are happy enough with the current status.)

I don't think there is any need to extend the set of packages that _should_ 
get hardening. The current guidelines are sufficient. What is not happening is 
the packages that have apps that fit the need to be hardened are not getting 
the proper hardening. I have opened dozens of bugs on the "core" packages that 
matter, but even those bz are still not complete.

Bottom line, we just need more prodding of maintainers that have apps that 
need hardening based on current guidelines.

-Steve
-- 
devel mailing list
devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/devel





[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]
  Powered by Linux