> I believe Root programs have the necessary policy in place to treat > incidents -in exceptional circumstances- on a case-by-case basis. Wayne > had mentioned in a previous post [4] that Mozilla doesn't want to be > responsible for assessing the potential impact, but that statement took > for granted that there was a definite violation of a requirement.
It looks like it would be useful to have this exceptions handling procedure in place, especially for situations like the current one with with low security impact but a high potential for producing service disruption everywhere. Is Mozilla reassessing to introduce a procedure to handle exceptions?. _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
