Re: SIG proposal: Multimedia SIG
On Tuesday, 20 June 2023 at 00:01, JT wrote: > In the original post, I took private to mean its own dedicated list... > not that it'd be hidden from view from everyone. IMHO everything with > Fedora should be in the open. Bugs should be reported upstream, so I > dont see why there would need to be any confidential information dealt > with by the SIG. If we set up the SIG bugzilla account as the default assignee, it'll get sent bug reports filed by ABRT that are often marked as Confidential because people submitting them don't uncheck the "mark as private" checkbox for some reason. I get such bug reports regularly and I usually ask the reporter to make them public. Some agree, others never reply. Such reports cannot be made public without reporter's consent. So yes, the plan is to have a non-public mailing list just for this purpose. There's no intention of using it for any other purpose. If the SIG members see a need for a dedicated mailing list, Matrix chanel, forum or another communication venue, that can be set up later. Right now, the idea is to share maintenance workload and coordinate rebuilds. Regards, Dominik -- Fedora https://fedoraproject.org There should be a science of discontent. People need hard times and oppression to develop psychic muscles. -- from "Collected Sayings of Muad'Dib" by the Princess Irulan ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: SIG proposal: Multimedia SIG
Dominik, On 2023-06-20 05:32, Dominik 'Rathann' Mierzejewski wrote: Hello! With the growing number of multimedia packages in Fedora, mostly owing to the introduction of ffmpeg package and Legal permission to enable and ship many popular codecs, I think we've reached the critical mass of packages and maintainers that warrants the creation of a Multimedia SIG. I propose, similar to the recently established LibreOffice SIG, to create a FAS group, Bugzilla account and a private mailing list. Great idea! P. -- Philip Rhoades PO Box 896 Cowra NSW 2794 Australia E-mail: p...@pricom.com.au ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: SIG proposal: Multimedia SIG
On Mon, 2023-06-19 at 18:01 -0400, JT wrote: > In the original post, I took private to mean its own dedicated list... not > that it'd be hidden > from view from everyone. IMHO everything with Fedora should be in the open. > Bugs should be > reported upstream, so I dont see why there would need to be any confidential > information dealt > with by the SIG. > Security exploits for upstream applications shouldnt be dealt with upstream > and not here with a > Fedora SIG. There's no reason for exploit discussion of that nature unless > its something Fedora > has introduced, at which point it's relevant and should be public so users > can be aware and > address/mitigate any potential threat. > JT > Hi, I agree. Regards Phil -- *** Playing the game for the games own sake. *** Associations: * Debian Maintainer (DM) * Fedora/EPEL Maintainer. * Contributor member of the AlmaLinux foundation. WWW: https://kathenas.org Buy Me a Coffee: https://www.buymeacoffee.com/kathenasorg Twitter: @kathenasorg Instagram: @kathenasorg IRC: kathenas GPG: 724AA9B52F024C8B signature.asc Description: This is a digitally signed message part ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: SIG proposal: Multimedia SIG
On Mon, 2023-06-19 at 22:36 +, Maxwell G wrote: > On Mon Jun 19, 2023 at 22:20 +0100, Philip Wyett wrote: > > On Mon, 2023-06-19 at 21:32 +0200, Dominik 'Rathann' Mierzejewski wrote: > > > Hello! > > > > > > With the growing number of multimedia packages in Fedora, mostly owing > > > to the introduction of ffmpeg package and Legal permission to enable > > > and ship many popular codecs, I think we've reached the critical mass of > > > packages and maintainers that warrants the creation of a Multimedia SIG. > > > > > > I propose, similar to the recently established LibreOffice SIG, to > > > create a FAS group, Bugzilla account and a private mailing list. > > > > > > > Private mailing list? No part of this project should have private anything > > IMHO. > > This is how all Fedora packaging SIGs work. They have a private mailing > list that's only used for Bugzilla notifications that may contain > private bugs with sensitive information, and then everything else is > handled over standard, public channels. > > Using the Python SIG as an example: > > - python-de...@lists.fedoraproject.org -> Public discussion list > - python-packagers-...@lists.fedoraproject.org -> List used for the > Bugzilla account and nothing else. Only open to members of the > @python-packagers-sig FAS group. > - #python:fedoraproject.org / #fedora-python -> Synchronous > communication > > -- > Maxwell G (@gotmax23) > Pronouns: He/They > _ Hi, If for notification only of persons in a group that is more suitable and they are never used for reply/ongoing private group discussion. Thanks for the clarification. Regards Phil -- *** Playing the game for the games own sake. *** Associations: * Debian Maintainer (DM) * Fedora/EPEL Maintainer. * Contributor member of the AlmaLinux foundation. WWW: https://kathenas.org Buy Me a Coffee: https://www.buymeacoffee.com/kathenasorg Twitter: @kathenasorg Instagram: @kathenasorg IRC: kathenas GPG: 724AA9B52F024C8B signature.asc Description: This is a digitally signed message part ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: SIG proposal: Multimedia SIG
On Mon Jun 19, 2023 at 22:20 +0100, Philip Wyett wrote: > On Mon, 2023-06-19 at 21:32 +0200, Dominik 'Rathann' Mierzejewski wrote: > > Hello! > > > > With the growing number of multimedia packages in Fedora, mostly owing > > to the introduction of ffmpeg package and Legal permission to enable > > and ship many popular codecs, I think we've reached the critical mass of > > packages and maintainers that warrants the creation of a Multimedia SIG. > > > > I propose, similar to the recently established LibreOffice SIG, to > > create a FAS group, Bugzilla account and a private mailing list. > > > > Private mailing list? No part of this project should have private anything > IMHO. This is how all Fedora packaging SIGs work. They have a private mailing list that's only used for Bugzilla notifications that may contain private bugs with sensitive information, and then everything else is handled over standard, public channels. Using the Python SIG as an example: - python-de...@lists.fedoraproject.org -> Public discussion list - python-packagers-...@lists.fedoraproject.org -> List used for the Bugzilla account and nothing else. Only open to members of the @python-packagers-sig FAS group. - #python:fedoraproject.org / #fedora-python -> Synchronous communication -- Maxwell G (@gotmax23) Pronouns: He/They ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: SIG proposal: Multimedia SIG
In the original post, I took private to mean its own dedicated list... not that it'd be hidden from view from everyone. IMHO everything with Fedora should be in the open. Bugs should be reported upstream, so I dont see why there would need to be any confidential information dealt with by the SIG. Security exploits for upstream applications shouldnt be dealt with upstream and not here with a Fedora SIG. There's no reason for exploit discussion of that nature unless its something Fedora has introduced, at which point it's relevant and should be public so users can be aware and address/mitigate any potential threat. JT On Mon, Jun 19, 2023 at 5:49 PM Philip Wyett wrote: > On Mon, 2023-06-19 at 23:39 +0200, Emmanuel Seyman wrote: > > * Philip Wyett [19/06/2023 22:20] : > > > Private mailing list? No part of this project should have private > anything IMHO. > > > > Bug reports can explain security flaws and lead to exploits. They can > > also contain confidentiel information. > > > > I would suggest a private ml dedicated to bugs and a public one for > > everything else, IMHO. > > > > Emmanuel > > > > Hi, > > Any bug report that contains sensitive data (exploitable or not) and is > deemed private, the > discussion should be done in that bug report. > > Private ML is always a bad idea as much discussion tends to end up on it > and the wider community is > excluded and I do not believe we are here to exclude. > > Regards > > Phil > > -- > *** Playing the game for the games own sake. *** > > > Associations: > > * Debian Maintainer (DM) > * Fedora/EPEL Maintainer. > * Contributor member of the AlmaLinux foundation. > > WWW: https://kathenas.org > > Buy Me a Coffee: https://www.buymeacoffee.com/kathenasorg > > Twitter: @kathenasorg > > Instagram: @kathenasorg > > IRC: kathenas > > GPG: 724AA9B52F024C8B > ___ > devel mailing list -- devel@lists.fedoraproject.org > To unsubscribe send an email to devel-le...@lists.fedoraproject.org > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue > ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: SIG proposal: Multimedia SIG
On Mon, 2023-06-19 at 23:39 +0200, Emmanuel Seyman wrote: > * Philip Wyett [19/06/2023 22:20] : > > Private mailing list? No part of this project should have private anything > > IMHO. > > Bug reports can explain security flaws and lead to exploits. They can > also contain confidentiel information. > > I would suggest a private ml dedicated to bugs and a public one for > everything else, IMHO. > > Emmanuel > Hi, Any bug report that contains sensitive data (exploitable or not) and is deemed private, the discussion should be done in that bug report. Private ML is always a bad idea as much discussion tends to end up on it and the wider community is excluded and I do not believe we are here to exclude. Regards Phil -- *** Playing the game for the games own sake. *** Associations: * Debian Maintainer (DM) * Fedora/EPEL Maintainer. * Contributor member of the AlmaLinux foundation. WWW: https://kathenas.org Buy Me a Coffee: https://www.buymeacoffee.com/kathenasorg Twitter: @kathenasorg Instagram: @kathenasorg IRC: kathenas GPG: 724AA9B52F024C8B signature.asc Description: This is a digitally signed message part ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: SIG proposal: Multimedia SIG
* Philip Wyett [19/06/2023 22:20] : > > Private mailing list? No part of this project should have private anything > IMHO. Bug reports can explain security flaws and lead to exploits. They can also contain confidentiel information. I would suggest a private ml dedicated to bugs and a public one for everything else, IMHO. Emmanuel ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: SIG proposal: Multimedia SIG
On Mon, 2023-06-19 at 21:32 +0200, Dominik 'Rathann' Mierzejewski wrote: > Hello! > > With the growing number of multimedia packages in Fedora, mostly owing > to the introduction of ffmpeg package and Legal permission to enable > and ship many popular codecs, I think we've reached the critical mass of > packages and maintainers that warrants the creation of a Multimedia SIG. > > I propose, similar to the recently established LibreOffice SIG, to > create a FAS group, Bugzilla account and a private mailing list. > Private mailing list? No part of this project should have private anything IMHO. Regards Phil -- *** Playing the game for the games own sake. *** Associations: * Debian Maintainer (DM) * Fedora/EPEL Maintainer. * Contributor member of the AlmaLinux foundation. WWW: https://kathenas.org Buy Me a Coffee: https://www.buymeacoffee.com/kathenasorg Twitter: @kathenasorg Instagram: @kathenasorg IRC: kathenas GPG: 724AA9B52F024C8B signature.asc Description: This is a digitally signed message part ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: SIG proposal: Multimedia SIG
As the current Maintainer of Fedora Jam... I'm on board with this idea. ~JT On Mon, Jun 19, 2023 at 3:33 PM Dominik 'Rathann' Mierzejewski < domi...@greysector.net> wrote: > Hello! > > With the growing number of multimedia packages in Fedora, mostly owing > to the introduction of ffmpeg package and Legal permission to enable > and ship many popular codecs, I think we've reached the critical mass of > packages and maintainers that warrants the creation of a Multimedia SIG. > > I propose, similar to the recently established LibreOffice SIG, to > create a FAS group, Bugzilla account and a private mailing list. > > Regards, > Dominik > -- > Fedora https://fedoraproject.org > There should be a science of discontent. People need hard times and > oppression to develop psychic muscles. > -- from "Collected Sayings of Muad'Dib" by the Princess Irulan > ___ > devel mailing list -- devel@lists.fedoraproject.org > To unsubscribe send an email to devel-le...@lists.fedoraproject.org > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue > ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
SIG proposal: Multimedia SIG
Hello! With the growing number of multimedia packages in Fedora, mostly owing to the introduction of ffmpeg package and Legal permission to enable and ship many popular codecs, I think we've reached the critical mass of packages and maintainers that warrants the creation of a Multimedia SIG. I propose, similar to the recently established LibreOffice SIG, to create a FAS group, Bugzilla account and a private mailing list. Regards, Dominik -- Fedora https://fedoraproject.org There should be a science of discontent. People need hard times and oppression to develop psychic muscles. -- from "Collected Sayings of Muad'Dib" by the Princess Irulan ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue