Jens Vagelpohl wrote:
> This morning we noticed some odd activity on cvs.zope.org that
> looked like someone had broken into the machine.
...
> The collector.zope.org web site, which was served from the same
> machine, will probably end up being integrated into www.zope.org
> tomorrow and cease to exist as a separate Zope instance.

I'd like to make a request.  If evidence reveals that
{cvs,collector}.zope.org *was* compromised, then would ZC kindly
consider making all 'security' bugs in the collector public?
The reasoning being that there is little point behind hiding potential
security problems from the zope community if the blackhat community
has already obtained the details.  That said, any status on getting
the collector back up?

-- 
Jamie Heilman                     http://audible.transient.net/~jamie/

_______________________________________________
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://mail.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope )

Reply via email to