[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] Critique of the Xen Security Process

> On 11 Nov 2015, at 09:59, Lars Kurth <lars.kurth.xen@xxxxxxxxx> wrote:
>>> but it doesn't seem
>>> to have a lot of community effort behind it and it too attempts to
>>> install dependencies on my machine and wants to be run with sudo.
>> I believe it has a mode where it simply checks for dependencies and tells
>> you what is required and thereby avoids the need for sudo, but I'm not
>> sure.
> It seems that raisin may provide a good baseline the for "build process 
> security", but it would of course be good to hear this from others who have 
> raised this issue. Assuming it is (we probably need a few ACKs for this), 
> would it make sense to take this into a separate thread then (with an 
> appropriate CC list), and refer to it from here?

The details of this are discussed at 
http://lists.xenproject.org/archives/html/xen-devel/2015-11/msg01045.html now
Xen-devel mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.