From owner-freebsd-security Wed Oct 4 3:23:30 2000 Delivered-To: freebsd-security@freebsd.org Received: from green.dyndns.org (localhost [127.0.0.1]) by hub.freebsd.org (Postfix) with ESMTP id 74F6337B66C; Wed, 4 Oct 2000 03:23:24 -0700 (PDT) Received: from localhost (z2i384@localhost [127.0.0.1] (may be forged)) by green.dyndns.org (8.11.0/8.11.0) with ESMTP id e94ANE507903; Wed, 4 Oct 2000 06:23:16 -0400 (EDT) (envelope-from green@FreeBSD.org) Message-Id: <200010041023.e94ANE507903@green.dyndns.org> X-Mailer: exmh version 2.2 06/23/2000 with nmh-1.0.4 To: Kris Kennaway Cc: Warner Losh , Paul Richards , cvs-committers@FreeBSD.org, freebsd-security@FreeBSD.org Subject: Re: cvs commit: src/usr.bin/finger finger.c In-Reply-To: Message from Kris Kennaway of "Tue, 03 Oct 2000 16:27:20 PDT." <20001003162720.D51546@freefall.freebsd.org> From: "Brian F. Feldman" Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Wed, 04 Oct 2000 06:23:13 -0400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Kris Kennaway wrote: > On Tue, Oct 03, 2000 at 12:00:57PM -0600, Warner Losh wrote: > > In message <39DA182C.C70ED553@originative.co.uk> Paul Richards writes: > > : I think we should have a stable release team, that changes to the stable > > : branch should be gated through to ensure they're thouroughly tested and > > : that there's a need for them to be backported. I'd be happy to work with > > : anyone else who wants to volunteer to do that since maintaining a stable > > : version of the OS is a major issue for me with my new hat on. > > > > I'd support this strongly, both as Warner Losh, Committer and as > > Warner Losh, Security Officer. My current job uses -stable and needs > > to have it be sane at "all"[*] times, or we waste a lot of effort > > bringing in and backing out unstable versions (we do some sanity > > testing before bringing a version in, but there's only so much you can > > do). > > I think a formal MFC process may be too stifling, unless we have a > VERY responsive MFC team. Consider that we don't want the same thing > to happen as did with 3.x, where 4.0-CURRENT was allowed to diverge so > much that merging bugfixes became difficult. > > I'd settle for committers being more cautious about merging their own > changes and self-managing the process better. I was thinking of it much more in the terms of a list like "reviews@FreeBSD.org" which would be private for committers posting changes they want reviewed again just before inclusion in -STABLE and anyone who wanted to could review them (I would like to, for example). If I have "X" I want reviewed, it would be nice to have a target instead of shooting in the dark. One consolidated place for people to post need for reviews would go along way towards this goal, don't you think? -- Brian Fundakowski Feldman \ FreeBSD: The Power to Serve! / green@FreeBSD.org `------------------------------' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message