[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: 1.0.3 release scheduling

From: <kfogel_at_collab.net>
Date: 2004-05-19 15:48:47 CEST

John Peacock <jpeacock@rowman.com> writes:
> Fair enough. I saw his announcement with the release. In the future,
> it would be useful if the initial warning that a release was imminent
> either was more specific or less specific. Either state that it fixes
> an unannounced security issue or point to an existing security alert.
> Simple stating that "[t]his release will include only the fix for the
> security problem" causes only confusion (like we should all know which
> security problem which is being referenced).
>
> I have no problem with delaying the public announcement of the exact
> problem until a patched version is available, only that it wasn't
> communicated well.

I think Ben just forgot that this list had not yet heard of any
security issue when he posted that. It's easy to get confused when
you've got multiple conversations going on at once, some private, some
public.

-Karl

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Wed May 19 17:05:56 2004

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.