I'm sure some of you are wondering why the changes to the mailing
list. A lot of people have unsubscribed because security-discuss used
to be such a low traffic list. Others may unsubscribe in the days to
come. So be it.

security-discuss was meant as a discussion list, however it was never
really used as much. People were not or are not discussing security.
We hope to change that. MandrakeSecure is supposed to change this.

MandrakeSecure is the latest website for Mandrake Linux users and it
focuses completely on security. The website is reachable at
http://www.mandrakesecure.net/ and contains a lot of info about
security.

The security-discuss mailing list was removed and replaced with
discussmandrakesecure.net (this list). We simply imported all the
email addresses from security-discuss to this list, and as such some
people may be confused in expecting sympa to handle their requests,
like the other MandrakeSoft mailing lists.

The mandrakesecure.net domain, and thus the mailing lists, are handled
by the qmail MTA. The mailing lists are handled by ezmlm-idx. So it
is a little different. You can use the web form at
http://www.mandrakesecure.net/mlist.php to subscribe or unsubscribe
from the various lists. You can also see what lists are available
from MandrakeSecure here, and you can also obtain the list archives
here as well. For those who want the email commands to sub/unsub the
various lists, you must use:

listname-subscribemandrakesecure.net to subscribe
listname-unsubscribemandrakesecure.net to unsubscribe
listname-helpmandrakesecure.net to get help on commands
listname-infomandrakesecure.net to get info on the lists

"listname" can be one of the following mailing lists:

announce - a read-only announcements list for advisories
discuss - a subscriber-only discussion list for security
qmail - a subscriber-only discussion list for the qmail MTA
snf - a subscriber-only discussion list for Single Network Firewall
exploits - a post-moderated list of "early warning" messages

Dan, I appreciate the posts you've made regarding the OpenSSH stuff to
this list. However, this should be sent to exploits in the future.

The exploits list takes a little description, and might be better
suited for those who don't want to *discuss* security, but rather want
to monitor announcements about vulnerabilities that may affect
Mandrake Linux, but neither have the time nor inclination to read
bugtraq and other ml's.

Posting to exploits is moderated. Each post needs to be confirmed by
a moderator before being sent to the list. Discussion on topics on
exploits should be taken to discuss.

So if you want the info without the discussion, unsub discuss and
subscribe to exploits. I actually recommend everyone on this list
subscribe to exploits (however I will not do this for you).

Hopefully this is a better explanation as to the changes to the
mailing lists and to what we're trying to do here. I'll make an
exception for *some* OT messages these first few days, however there
are certain places for certain things. Please respect the other list
members by trying to remain on topic as much as possible.

I do recommend that everyone take a cursory look at MandrakeSecure
website at any rate. There is a lot of info there for you to use, and
I hope to post (bi-weekly) some articles or tutorials to help with
various aspects of system security.

Of course, if others in the community want to write pieces to be
published on MandrakeSecure, I am *more* than willing to accept
contributions. =)

Thanks. And I hope this clears things up somewhat.

-- 
OpenPGP key available on www.keyserver.net
1024D/FE6F2AFD   88D8 0D23 8D4B 3407 5BD7  66F9 2043 D0E5 FE6F 2AFD
Current Linux kernel 2.4.8-34.1mdk uptime: 15 days 22 hours 3 minutes.

-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org

iD8DBQE8DobIIEPQ5f5vKv0RApuZAJsGetSp3Xn2SJs/LYXj00nhV1cRlQCfXJ4M LisvTDVau8GHtJ6fXWq8ijU= =v4TD -----END PGP SIGNATURE-----

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]