Begin forwarded message:
From: “Lime, Steve D (MNIT)” <Steve.Lime@state.mn.us>
Subject: Re: [mapserver-dev] “Security/Vulnerability (Private)” tickets are not private
Date: November 12, 2013 4:05:06 PM EST
To: Sebastiaan Couwenberg <sebastic@xs4all.nl>, MapServer Dev Mailing List <mapserver-dev@lists.osgeo.org>
Interesting idea. Wonder if OSGeo would host it? Anyone know what other projects are doing in this regard?
-----Original Message-----
From: mapserver-dev-bounces@lists.osgeo.org [mailto:mapserver-dev-bounces@lists.osgeo.org] On Behalf Of Sebastiaan Couwenberg
Sent: Tuesday, November 12, 2013 2:46 PM
To: MapServer Dev Mailing List
Subject: Re: [mapserver-dev] “Security/Vulnerability (Private)” tickets are not privateOn 11/12/2013 09:03 PM, thomas bonfort wrote:
I’m open as to how we should treat those: a private psc/security
mailing list, a shared googledoc, others?RTIR may be an option. It’s the RT ticketing system customized for security response teams. It can be used to track security issues reported to security@mapserver.org, and the communication with the various distribution security teams.
http://www.bestpractical.com/rtir/
Kind Regads,
Bas
–
GnuPG: 0xE88D4AF1 (new) / 0x77A975AD (old) _______________________________________________
mapserver-dev mailing list
mapserver-dev@lists.osgeo.org
http://lists.osgeo.org/mailman/listinfo/mapserver-dev
mapserver-dev mailing list
mapserver-dev@lists.osgeo.org
http://lists.osgeo.org/mailman/listinfo/mapserver-dev