Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Date: Tue, 26 Feb 2008 18:55:13 -0700
From: Vincent Danen <vdanen@...sec.ca>
To: oss-security@...ts.openwall.com
Subject: Re: wiki page/namespace names, wiki feature	requests,
 etc.

* [2008-02-25 17:35:07 +0300] (GalaxyMaster) wrote:

>> wiki, they can just not read those messages. I think discussing issues
>> pertinent to the oss-security concept as a whole on this list is relevant
>> and wise. As you say, if we move off-list, we will lose a lot of eyeballs.
>
>Agreed.  Then I propose to prefix any Wiki-related messages with the
>'wiki:' prefix, so those who aren't interested can easily distinguish
>such messages and skip them.
>
>Now re: modules (like auto-index).  We need some way to determine when
>a request for a new Wiki functionality should be fulfilled and when it
>should be denied.  Although, I'm glad to invest my spare time into this
>project (as a sysadmin, a wiki maintainer, etc.) I think it's unwise to
>install any requested plugin (or implement some feature from scratch)
>per initial request.  How about votes from 3-4 subscribers to get
>a green light to a request?  Or we can define a list of people who are
>eligible to approve such changes.

I'm ok with a vote.  Actually, I would say that most people probably
don't care, so I'd say if you get 3-4 votes *against* something, then
don't implement it.  Most people who don't care one way or the other
will say nothing, while those against something are more likely to speak
up.

Of course, a valid reason as to why they are against something should be
a prerequisite.

-- 
Vincent Danen @ http://linsec.ca/

Content of type "application/pgp-signature" skipped

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.