Hi, thank you all for your support in creating a security project for OpenOffice.org!
The security project is now live on http://security.openoffice.org/ The mailing list is disc...@security.openoffice.org. Right now there is no dev mailing list, because the project will (probably) not host any code in it's repository. Of course the discuss list can also be used for discussing possible implementation details - I just didn't want to have 2 mailing lists for now. If you think this doesn't make sense, and we need a dev list, please let me know. Right now I have only created the projects' home page and a wiki with almost no content. I plan to put all the different things from my existing security documents into single Wiki pages, to make it easy for everybody to read and enhance the content. And now, feel free to join the new security project! :) If you plan to actively work in the project, it would be nice if you could add yourself to http://wiki.services.openoffice.org/wiki/Security/People, so we have an overview about who is working on what kind of stuff. Before starting concrete discussions on the new mailing list, I will wait some days to give people enough time to subscribe. Welcome to the security project, Malte. Malte Timmermann wrote, On 05/25/09 17:29: > Hi, > > security is a really important topic, and it should get better > visibility/attention on OOo. > > And it's currently in focus, as you can see on > http://blogs.sun.com/malte/entry/comments_on_the_black_hat > > I thought it would be a good idea to start a security project, which > could take care for security and privacy related things long term. > > I would like to ask all of you to support and to vote for this new > project, as proposed below. > > Best, > Malte. > > > ---------------------------------- > > > MISSION STATEMENT > > The goal of the security project is to work on security and privacy > related improvements and features in OpenOffice.org. > > Solutions need to be analyzed and discussed in a wider audience, before > implementations in OpenOffice.org start. > > > PROJECT PROPOSAL > > Members of the security project will help improving OpenOffice.org > security and privacy by identifying possible security and privacy issues > and by elaborating solutions. > > This includes general topics like encryption, password handling, digital > signatures and certificate handling. > > The solution won't necessarily be implemented by members of the security > team. Members of the project have some skills in the area of security > and privacy, but don't necessarily need to be very familiar with the > OpenOffice.org code base. > > The Security Project should also work on security and privacy issues > with regard to the OpenOffice.org web site. > > This project supplements the efforts of the OpenOffice.org security team > and will not supersede it. Undisclosed security vulnerabilities will > still be handled by the security team alone, as well as the security > bulletins and alerts, because such information can not be disclosed in > advance to members of a project where everybody can join. > > As a long term goal, the security project could do some deeper security > investigations in the existing code base, or elaborate some security > related guidelines for developers. > > We invite the OpenOffice.org community to join the project and help > us ensure that OpenOffice.org remains safe and reliable for all users. > > > PROJECT LEAD: > > Malte Timmermann, Technical Architect Software Engineering, Sun > Microsystems. > > Co-Leads: > tbd. > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: discuss-unsubscr...@openoffice.org > For additional commands, e-mail: discuss-h...@openoffice.org > --------------------------------------------------------------------- To unsubscribe, e-mail: discuss-unsubscr...@openoffice.org For additional commands, e-mail: discuss-h...@openoffice.org
