Florian Weimer wrote: > Would debian-admin or the security team like to act as a contact for > such problems (i.e. potential compromise of Debian infrastructure)? > Perhaps http://www.debian.org/security/ could be updated accordingly?
Anything but a non-public list/forum/whatever would be fine and better. In fact I have had already informed the admin after a user informed me. Since http://www.debian.org/security/ is about the security in Debian packages technically it would be the wrong place. However, I won't reject a new item in the FAQ there. Regards, Joey -- MIME - broken solution for a broken design. -- Ralf Baechle Please always Cc to me when replying to me on the lists. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]