|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
HEADS UP Re: Changing `security
freebsd.org' alias
From: Jacques A. Vidrine (nectarFreeBSD.org)
Date: Fri Apr 16 2004 - 11:32:42 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello again,
The change discussed earlier has been made. Email to
<securityFreeBSD.org> now reaches the security team rather than any
public list.
If you find any references to <securityFreeBSD.org> as a public list,
please let me know. It appears that there were none on the web site
or handbook or FAQ, but there could be some I missed.
Cheers,
--
Jacques Vidrine / nectarcelabo.org / jvidrineverio.net / nectarfreebsd.org
On Wed, Apr 07, 2004 at 10:42:20AM -0500, Jacques A. Vidrine wrote:
> Hello Folks,
>
> The official email address for this list is
> `freebsd-securityfreebsd.org'. Due to convention, there is an email
> alias for this list: securityfreebsd.org, just as there is for
> hackers & freebsd-hackers, arch & freebsd-arch, and so on.
>
> The securityfreebsd.org alias has been the source of occassional
> problems. Several times in the past, postings have been made to that
> address under the assumption that address was directed to security
> response personnnel, and not a public mailing list. Of course, this
> was a reasonable assumption. Practically every vendor in the universe
> uses security for that purpose, largely because RFC 2142 strongly
> recommends it for that purpose.
>
> And sometimes one just makes a typo. It has not been
> too uncommon for people to forget the `-officer' part of
> `security-officerfreebsd.org'. (Yours truly has been guilty of
> this.)
>
> Mistaken early disclosure of a vulnerability can have consequences
> from the merely embarrasing to catastrophic. Therefore, I am
> proposing that `securityfreebsd.org' be re-routed to the Security
> Officer.
>
> I imagine this will have some significant impact: there must be
> many references to securityfreebsd.org as a public list out there.
> So, I thought I'd air the issue here before sending any request to
> postmaster.
>
> Cheers,
> --
> Jacques Vidrine / nectarcelabo.org / jvidrineverio.net / nectarfreebsd.org
> _______________________________________________
> freebsd-securityfreebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
>
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]