Re: Bunch of bugs reported by Ilja van Sprundel

To: tech-kern%netbsd.org@localhost, Taylor R Campbell <riastradh%netbsd.org@localhost>
Subject: Re: Bunch of bugs reported by Ilja van Sprundel
From: maya%netbsd.org@localhost
Date: Mon, 29 Jan 2018 19:01:39 +0000

I think we should have a discussion to change the way netbsd releases
and security advisories are done. they seem to be suitable for a large
company, and netbsd is doesn't keep up with it.

security advisories are extremely tiresome to write, and contain a lot
of useless information. All I care is "is this security? how bad is it?
maybe tell me a little about it? and give me a binary fixing it".

Instead we include information about CVS revisions for people who might
want to cherry pick the result, which is a lot of work to create and has
marginal use.

We also don't provide the binaries. Moreso, people downloading netbsd
after the fix do not get a fixed version.
We are able to build a full release daily, but have infrequent and
time-consuming teeny releases.

snj goes through a lot of work to put together release notes for teeny
releases and updating in several places. It would be more effective use
of resources if we did a weekly signed build and pointed downloads to
it, and provides the CHANGES entry somewhere on the website.

Follow-Ups:
- Re: Bunch of bugs reported by Ilja van Sprundel
  - From: Kamil Rytarowski
- SAs [was Bunch of bugs reported by Ilja van Sprundel]
  - From: Mouse

References:
- Bunch of bugs reported by Ilja van Sprundel
  - From: Edgar Fuß

Prev by Date: Re: Bunch of bugs reported by Ilja van Sprundel
Next by Date: SAs [was Bunch of bugs reported by Ilja van Sprundel]
Previous by Thread: Re: Bunch of bugs reported by Ilja van Sprundel
Next by Thread: SAs [was Bunch of bugs reported by Ilja van Sprundel]
Indexes:

Home | Main Index | Thread Index | Old Index