On 4/10/2014 5:52 PM, Volker Kuhlmann wrote:
On Fri 11 Apr 2014 09:27:07 NZST +1200, Jim Thompson wrote:
It was posted on announce@, but it seems that I’m moderated there. This
is why my 2.1.1 release announcement was also held. I’ve pushed the message
through.
Setup glitches. Thanks!
security@ is for posting SAs
Uhhmm, IMHO I don't really care what it's called, the relevant criteria
for the user is whether I need to know about it. I would welcome an
announcement list that mentions all security-related issues I need to be
aware of when using pfsense, so that list can be monitored without the
clutter of daily discussions. Like the Linux distro security lists,
they're well organised with no irrelevant drivel. To be honest, any
security announcement list that doesn't mention the kind of problem like
heartbleed looks like a complete waste of time to me!
Volker
The security@ email list is brand new. Its so we can announce issues
like Heartbleed. People can filter on it etc.
Any security issues we become aware of will be announce here, as
security advisories.
The email list and page, we just started working on last week, prior to
finding out about this, so we push them ahead along with the fixed
version of pfsense.
Pretty much all of this is being setup to get things to current best
practices. We're still working on this, and everything else, so
we are open to suggestions and improvements as well as feedback.
I think we'd be happy to host a security-discusse@ mailing list if
people want that. The main goal for announce was to let people have a
simple source for those security advisories.
_______________________________________________
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list
