Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 06 Apr 2011 07:46:57 -1000
From: akuster <akuster@...sta.com>
To: oss-security@...ts.openwall.com
Subject: Re: Closed list



On 04/06/2011 06:57 AM, Solar Designer wrote:
> On Wed, Apr 06, 2011 at 06:26:01AM -1000, akuster wrote:
>> Please subscribe me to the new list. I was a vendor-sec subscriber for
>> MontaVista Software.
>>
>> pub  4096R/AEB9ED8D 2011-04-06 [expires: 2016-4-4]
>> uid Armin Kuster <akuster@...sta.com>
>> Fingerprint D51D 9911 B1C7 F763 9F82 F19F 7F75 7295 AEB9 ED8D
> 
> Looks like you forgot to make this public key available.  Please provide
> it to me and I'll subscribe you.

I hit one server, guess I need to hit them all. Please try again with
same key.

> 
> While we're at it, the MontaVista Software entry at:
> 
> http://oss-security.openwall.org/wiki/vendors#montavista-software-llc
> 
> says: "The process for distribution of security advisories is currently
> under discussion."  Perhaps this has already been discussed and decided
> upon?  If so, please update the wiki page with specific link(s) to your
> security advisories, updates, relevant mailing list archive - or
> whatever you have.  

Our advisories are via a paid subscription service so they are not public.

Without this info, it is unclear whether you would
> be making timely intended use of the advance notifications or not.

Our customers require vulnerabilities to be addressed in a timely manner.

will revisit the wiki issue soon.

- Armin

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.