: OpenSSL roadmap
On Wed, Jul 2, 2014 at 9:48 PM, Salz, Rich rs...@akamai.com wrote:
However, I feel that the developer group is a bit closed to outsiders.
More communication and transparency is coming, as we have a bigger and
more invigorated developer team. It will take time
No, I don't mean to imply that you are one of the bad guys. It's just that we
have only one real way of knowing who the good guys are, and that is being part
of the development team. Yes, that can be very inconvenient. Trust me, I
know, it took more than 10 years for the team to open up and
On Thu, Jul 3, 2014 at 3:10 PM, Salz, Rich rs...@akamai.com wrote:
No, I don't mean to imply that you are one of the bad guys. It's just that
we have only one real way of knowing who the good guys are, and that is being
part of the development team. Yes, that can be very inconvenient.
On 3 July 2014 13:01, Loganaden Velvindron logana...@gmail.com wrote:
On Thu, Jul 3, 2014 at 3:10 PM, Salz, Rich rs...@akamai.com wrote:
No, I don't mean to imply that you are one of the bad guys. It's just that
we have only one real way of knowing who the good guys are, and that is
being
On Thu, Jul 03, 2014 at 04:01:16PM +0400, Loganaden Velvindron wrote:
I see such trends as leading to dangerous situations in the future.
OpenSSL is widely deployed, and the developers appear to grow older,
according to the various interviews I read. (I don't wish to offend
any of you guys
On Čt, 2014-07-03 at 09:13 -0400, Theodore Ts'o wrote:
However, in the kernel we are much more lax about who gets access to
the Coverity project. Part of this is the sure and certain knowledge
that the bad guys are quite willing to pay for a Coverity license, and
so for us the balance of
On 3 July 2014 14:13, Theodore Ts'o ty...@mit.edu wrote:
However, in the kernel we are much more lax about who gets access to
the Coverity project. Part of this is the sure and certain knowledge
that the bad guys are quite willing to pay for a Coverity license, and
so for us the balance of
release processes at various distributions. (Given that Microsoft has weekly
patch Tuesdays, if even slow moving *Microsoft* can turn around a
security update in a week, what's your excuse? :-)
They have a regular release train, but it doesn't mean that everything gets
fixed in one week.
On 3 July 2014 15:28, Salz, Rich rs...@akamai.com wrote:
release processes at various distributions. (Given that Microsoft has weekly
patch Tuesdays, if even slow moving *Microsoft* can turn around a
security update in a week, what's your excuse? :-)
They have a regular release train, but
On Thu, Jul 03, 2014 at 09:13:43AM -0400, Theodore Ts'o wrote:
(Given that Microsoft has weekly patch
Tuesdays, if even slow moving *Microsoft* can turn around a security
update in a week, what's your excuse? :-)
As far as I know, patch Tuesday is the 2nd Tuesday of the month.
But wikipedia
Hi guys,
I'm very happy to see the OpenSSL roadmap.
However, I feel that the developer group is a bit closed
to outsiders.
I requested access to the OpenSSL scan results on coverity,
and up to now, my request is still pending :-(
--
This message is strictly personal and the opinions
However, I feel that the developer group is a bit closed to outsiders.
More communication and transparency is coming, as we have a bigger and more
invigorated developer team. It will take time. But not everything will always
be discussed in public mailing lists right away, parciularly
On Wed, Jul 2, 2014 at 9:48 PM, Salz, Rich rs...@akamai.com wrote:
However, I feel that the developer group is a bit closed to outsiders.
More communication and transparency is coming, as we have a bigger and more
invigorated developer team. It will take time. But not everything will
-openssl-
d...@openssl.org] On Behalf Of Loganaden Velvindron
Sent: Wednesday, July 02, 2014 2:24 PM
To: openssl-dev@openssl.org
Subject: Re: OpenSSL roadmap
On Wed, Jul 2, 2014 at 9:48 PM, Salz, Rich rs...@akamai.com wrote:
However, I feel that the developer group is a bit closed to outsiders
On Wed, Jul 2, 2014 at 11:23 AM, Loganaden Velvindron
logana...@gmail.com wrote:
If I'm interested in fixing OpenSSL, why shouldn't I have access to
coverity scans ?
I'm not a committer, and not a core member, but I am fully prepared to
answer your question. Because the policy of the project
I agree. Not all open source projects play a major role in securing much of
the worlds e commerce.
On Jul 2, 2014 2:52 PM, Michael Sierchio ku...@tenebras.com wrote:
On Wed, Jul 2, 2014 at 11:23 AM, Loganaden Velvindron
logana...@gmail.com wrote:
If I'm interested in fixing OpenSSL, why
16 matches
Mail list logo