KDE Security Advisory: Konqueror Referer Authentication Leak
Waldo Bastian
bastian at kde.org
Wed Jul 30 18:40:49 CEST 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Wednesday 30 July 2003 15:48, Neil Stevens wrote:
> On Wednesday July 30, 2003 02:05, Waldo Bastian wrote:
> > On Wednesday 30 July 2003 01:27, Neil Stevens wrote:
> > > On Tuesday July 29, 2003 08:19, Waldo Bastian wrote:
> > > > Dirk and I made the decision to wait for KDE 3.1.3
> > >
> > > Here's where the process improvements need to be made. The KDE
> > > contributor community needs oversight and control over this point in
> > > the process.
> >
> > Why? Why do you think that that will lead to improvements? Why do you
> > think the process needs improvement at all? What would you like to have
> > seen done differently and why do you think that would have been better?
>
> I find it unacceptable that packagers two weeks advance notice before most
> KDE contributors on bad KDE bugs. That's the situation I'd like to see
> improved.
>
> I am under the impression that Rob feels similarly.
I disagree with that position for the reasons that I outlined in my response
to Rob's mail: I think the goal should be to limit the overall risk to our
userbase and not to limit the risk for a relative small group at the expense
of a larger group. I think the current policy finds the right balance.
Cheers,
Waldo
- --
bastian at kde.org -=|[ SuSE, The Linux Desktop Experts ]|=- bastian at suse.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE/J+cBN4pvrENfboIRAjkRAJ9F3NlvDybuz5KzdrTXN15U17mwHQCfa0xu
b2zuEgtTx8u0qY51vvx+Izw=
=oK1Z
-----END PGP SIGNATURE-----
More information about the Kde-policies
mailing list