From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
---|---|
To: | Devrim GUNDUZ <devrim(at)CommandPrompt(dot)com> |
Cc: | "pgsql-www(at)postgresql(dot)org" <pgsql-www(at)postgresql(dot)org> |
Subject: | Re: How to coordinate web team for security releases? |
Date: | 2007-02-05 22:04:46 |
Message-ID: | 21524.1170713086@sss.pgh.pa.us |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-www |
Devrim GUNDUZ <devrim(at)CommandPrompt(dot)com> writes:
> * Upload the new tarballs to a private area (instead of public FTP site)
> so that only packagers and other related people can download them to
> build the packages, etc.
We're not going to be able to make things really water-tight unless we
are willing to close off CVS somehow; which is not an idea I favor.
So I'm not particularly concerned about hiding tarballs --- especially
since that's not something we'd do in a normal, non-security release
cycle. As I said before, keeping it off the mailing lists is probably
sufficient, and in any case has to be our first goal before we start
worrying about any more-invasive procedural changes.
regards, tom lane
From | Date | Subject | |
---|---|---|---|
Next Message | Dave Page | 2007-02-05 22:05:22 | Re: How to coordinate web team for security releases? |
Previous Message | Dave Page | 2007-02-05 22:02:09 | Re: How to coordinate web team for security releases? |