----- Original Message ----- > From: Benson Margulies <bimargul...@gmail.com> > To: general@incubator.apache.org > Cc: > Sent: Monday, August 27, 2012 9:16 AM > Subject: Re: [VOTE] Apache OpenOffice Community Graduation Vote > > Jim, > > Two points: > > 1: you skip over the liability question. Is Bill legally exposed?
Short answer: yes he assumes some liability for those httpd windows builds, but it is probably limited to any negligence on his part in ensuring the build environment was properly secured. Going forward if the org wants to produce such production-quality builds itself it will need to invest in an audits produced by an Intrusion Detection System on such build hosts, and we'll need to have an auditable means of controlling 3rd party software involved in the builds (think maven repo, CPAN, etc). It's a serious change from the level of paranoia currently deployed in our existing build farms. HTH --------------------------------------------------------------------- To unsubscribe, e-mail: general-unsubscr...@incubator.apache.org For additional commands, e-mail: general-h...@incubator.apache.org
