On Thu, Feb 09, 2012 at 10:41:45AM -0500, Greg Freemyer wrote:
Security maintainers,
I've submitted a new role SR to be a maintainer of the security project since I've been pushing a bunch of DFIR packages there (Digital Forensics / Incident Response).
You don't really need to be a maintainer in the project to maintain them, you could also be a package maintainer. (maintainers can be set per-package or per-project).
Assuming I'm accepted, I have a few questions:
1) Is there a guideline for accepting new packages I submit? How about patches to packages I maintain.
ie. Can I just submit them from my home and accept them with no review, or is their a concept of letting another maintainer accept my SRs? Is that for both new packages and for updates?
That really depends on the project and the folks inside. For most, self-accepting is ok.
2) Several of the packages require packages from other repos to install. That's not a problem for factory / 12.2, but what about providing packages for 11.4/12.1. Should I just document that users need to install multiple repos? Or should I "osc linkpac" them to security? (If so, what's the best syntax for osc linkpac?)
Do not link into security, this will kind of break... As security is a devel project of Factory, they should have the sources and not just links. Better make some kind of backports repository somewhere. If the number of forensic packages is high (like above 20 or so), a subproject security:forensics might at some point in time be created.
3) dc3dd is currently in the archiving repo, but it makes more sense to me in the security repo. I want to push it to factory. Should I linkpac it to security first, then push from there?
There is no such package "dc3dd" in Archiving. In general the full sources are to be pushed to factory, not links. So you would copypac the sources over to security and submit them afterwards. But! If this package is not maintained by yourself, ask the maintainer of that package (politeness ;).
4) So far I haven't submitted any pen testing tools. Since those can be used for both good and bad, I wanted to know if there is a established policy for that class of tool. ie. They are encouraged? discouraged?
If they are clear hacking tools, meaning you can use them to easily crash machines, execute code or similar things on remote machines by just clicking -> Not even allowed on the OBS due to german law. Otherwise our position in general is mostly neutral to them.
5) I'd like to put together a wiki page that let's people know these DFIR packages exist. Is there an existing wiki page I can add to?
I do not know, but likely not. Ciao, Marcus -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org