From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 101A2138010 for ; Thu, 13 Sep 2012 19:59:42 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 4E3FD21C011; Thu, 13 Sep 2012 19:59:13 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 69B9FE06C1 for ; Thu, 13 Sep 2012 19:57:41 +0000 (UTC) Received: from [192.168.1.33] (189.Red-81-37-37.dynamicIP.rima-tde.net [81.37.37.189]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: pacho) by smtp.gentoo.org (Postfix) with ESMTPSA id ED5D733D72F for ; Thu, 13 Sep 2012 19:57:38 +0000 (UTC) Subject: Re: [gentoo-dev] About changing security policy to unCC maintainers when their are not needed From: Pacho Ramos To: gentoo-dev@lists.gentoo.org In-Reply-To: <5051E41C.1060809@gentoo.org> References: <1347472741.2365.5.camel@belkin4> <5051E41C.1060809@gentoo.org> Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="=-rXeJBGhRVaC8ddqEuwA4" Date: Thu, 13 Sep 2012 21:57:34 +0200 Message-ID: <1347566254.4821.5.camel@belkin4> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org Mime-Version: 1.0 X-Mailer: Evolution 2.32.3 X-Archives-Salt: 22351133-fe11-40eb-baf2-6497544b64f3 X-Archives-Hash: 4e0da769f475610cc29078fa0500b0b7 --=-rXeJBGhRVaC8ddqEuwA4 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable El jue, 13-09-2012 a las 15:48 +0200, Alex Legler escribi=C3=B3: > On 12.09.2012 19:59, Pacho Ramos wrote: > > Hello > >=20 > > Currently, package maintainers are CCed to security bugs when their are > > needed. The problem is that, once maintainers add a fixed version and > > tell security team they are ok to get it stabilized, maintainers are > > kept CCed until bug is closed by security team. This usually means > > getting a lot of mail after some time when security team discuss if a > > GLSA should be filled or not, if security bot adds some comment... some > > of that comments are applied to really old bugs that need no action fro= m > > maintainers.=20 > >=20 > > Maybe would be interesting to change the policy to unCC maintainers > > again when their action is no longer required. > >=20 > > What do you think? >=20 > Sorta OT but a general thing: I think you should CC teams you want to > talk to and not only use the gentoo-systemd-flamewars^W^W-dev mailing > list where these teams might only find your post by chance. >=20 > >=20 > > Thanks for your thoughts=20 > >=20 I thought all developers were subscribed to gentoo-dev and would read it :| --=-rXeJBGhRVaC8ddqEuwA4 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.19 (GNU/Linux) iEYEABECAAYFAlBSOq4ACgkQCaWpQKGI+9SvCgCghmrKsjHxrOZ4HK61fzW/M2zL SLIAnR0fd7PaOsWI6nVnoqsVu8/6HpG3 =g5tD -----END PGP SIGNATURE----- --=-rXeJBGhRVaC8ddqEuwA4--