From abd407b4170ea90f3ff0aaaceb86a6e1350ac7dd Mon Sep 17 00:00:00 2001 From: lucas Date: Sat, 30 Jul 2011 13:54:33 +0000 Subject: [PATCH] Encourage the use of RT to contact the security team. Patch from Thijs Kinkhorst. Closes: #610782 git-svn-id: svn://anonscm.debian.org/ddp/manuals/trunk/developers-reference@8905 313b444b-1b9f-4f58-a734-7bb04f332e8d --- debian/changelog | 4 +++- pkgs.dbk | 16 ++++++++++++---- 2 files changed, 15 insertions(+), 5 deletions(-) diff --git a/debian/changelog b/debian/changelog index a60b7bb..e0a2cf6 100644 --- a/debian/changelog +++ b/debian/changelog @@ -6,8 +6,10 @@ developers-reference (3.4.6) UNRELEASED; urgency=low [ Lucas Nussbaum ] * Update my email address. + * Encourage the use of RT to contact the security team. + Patch from Thijs Kinkhorst. Closes: #610782 - -- Lucas Nussbaum Sat, 30 Jul 2011 15:49:22 +0200 + -- Lucas Nussbaum Sat, 30 Jul 2011 15:52:49 +0200 developers-reference (3.4.5) unstable; urgency=low diff --git a/pkgs.dbk b/pkgs.dbk index be92f98..55316de 100644 --- a/pkgs.dbk +++ b/pkgs.dbk @@ -841,14 +841,22 @@ fixing them themselves, sending security advisories, and maintaining When you become aware of a security-related bug in a Debian package, whether or not you are the maintainer, collect pertinent information about the problem, -and promptly contact the security team at -&email-security-team; as soon as possible. DO NOT UPLOAD any packages for stable -without contacting the team. Useful information includes, for example: +and promptly contact the security team, preferedly by filing a ticket in +their Request Tracker. +See . +Alternatively you may email &email-security-team;. +DO NOT UPLOAD any packages for +stable without contacting the team. Useful information +includes, for example: +Whether or not the bug is already public. + + + + Which versions of the package are known to be affected by the bug. Check each version that is present in a supported Debian release, as well as testing and unstable. -- 2.30.2