From:
"Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
To:
Magnus Hagander <magnus(at)hagander(dot)net>
Cc:
Alvaro Herrera <alvherre(at)commandprompt(dot)com>, Josh Berkus <josh(at)agliodbs(dot)com>, Dave Page <dpage(at)pgadmin(dot)org>, Selena Deckelmann <selena(at)chesnok(dot)com>, Devrim GÜNDÜZ <devrim(at)gunduz(dot)org>, PostgreSQL - WWW ML <pgsql-www(at)postgresql(dot)org>, "Marc G(dot) Fournier" <scrappy(at)postgresql(dot)org>
Subject:
Re: RFC: Hosting mailing lists of 3rd party projects
Date:
2011-02-25 14:26:48
Message-ID:
alpine.BSF.2.00.1102251024420.55888@hub.org (view raw or flat )
Thread:
2011-02-21 19:11:32 from Devrim GÜNDÜZ <devrim(at)gunduz(dot)org>
2011-02-21 19:31:30 from "Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>
2011-02-21 23:35:47 from Josh Berkus <josh(at)agliodbs(dot)com>
2011-02-22 00:25:58 from "Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>
2011-02-24 21:32:44 from Devrim GÜNDÜZ <devrim(at)gunduz(dot)org>
2011-02-21 23:49:35 from Selena Deckelmann <selena(at)chesnok(dot)com>
2011-02-24 21:25:05 from Magnus Hagander <magnus(at)hagander(dot)net>
2011-02-25 00:31:18 from Alvaro Herrera <alvherre(at)commandprompt(dot)com>
2011-02-25 00:37:37 from Dave Page <dpage(at)pgadmin(dot)org>
2011-02-25 00:53:35 from Josh Berkus <josh(at)agliodbs(dot)com>
2011-02-25 00:56:48 from Selena Deckelmann <selena(at)chesnok(dot)com>
2011-02-25 01:53:20 from "Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>
2011-02-25 03:19:05 from Alvaro Herrera <alvherre(at)commandprompt(dot)com>
2011-02-25 03:28:51 from "Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
2011-02-25 03:40:23 from "Greg Sabino Mullane" <greg(at)turnstep(dot)com>
2011-02-25 03:19:15 from "Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
2011-02-25 09:58:06 from Magnus Hagander <magnus(at)hagander(dot)net>
2011-02-25 03:21:29 from Alvaro Herrera <alvherre(at)commandprompt(dot)com>
2011-02-25 03:27:17 from "Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
2011-02-25 10:06:29 from Magnus Hagander <magnus(at)hagander(dot)net>
2011-02-25 14:26:48 from "Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
2011-02-25 15:04:28 from Magnus Hagander <magnus(at)hagander(dot)net>
2011-02-25 15:13:28 from "Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
2011-02-25 17:18:27 from "Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>
2011-02-25 17:26:15 from "Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
2011-02-25 17:50:02 from "Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>
2011-02-26 04:03:09 from Josh Berkus <josh(at)agliodbs(dot)com>
2011-02-26 06:19:59 from "Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
2011-02-26 21:00:10 from "Greg Sabino Mullane" <greg(at)turnstep(dot)com>
2011-02-26 11:12:20 from Magnus Hagander <magnus(at)hagander(dot)net>
2011-02-26 19:53:18 from "Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>
2011-02-25 03:29:42 from "Joshua D(dot) Drake" <jd(at)commandprompt(dot)com>
2011-02-25 03:25:22 from "Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
2011-02-25 16:24:28 from Selena Deckelmann <selena(at)chesnok(dot)com>
2011-02-25 17:34:59 from "Marc G(dot) Fournier" <scrappy(at)hub(dot)org>
2011-02-22 16:32:07 from Alvaro Herrera <alvherre(at)commandprompt(dot)com>
2011-02-24 21:32:09 from Devrim GÜNDÜZ <devrim(at)gunduz(dot)org>
2011-02-22 18:07:53 from Robert Haas <robertmhaas(at)gmail(dot)com>
2011-02-24 21:36:23 from Devrim GÜNDÜZ <devrim(at)gunduz(dot)org>
Lists:
pgsql-www
On Fri, 25 Feb 2011, Magnus Hagander wrote:
> What I am more worried about is that there seems to be no upstream
> maintenance of mj2. I mean, their website hasn't been touched in more
> than 10 years! And given the *huge* security hole that was found in it
> recently (taht AFAIK was patched manually by Marc?), it's rather
> obvious there is no maintenance. And that worries me a lot.
Actually, apparently that bug was patched earlier then we found it ... the
thing mj2 is lacking is a proper commit mailing list, so I wasn't aware of
hte patch :(
> Do we really know the system well enough to be comfortable maintaining
> *all* of it? Or is there actually some top secret upstream
> maintainenance that just missed a *huge* security hole for 10 years?
Again, that was more a communications issue with the mj2 devs then an
oversight on their part ... as Alvaro can attest, when I posted to the mj2
list about it, the firts rsponse I got out of Jason (core deeveloper) was
"already fixed in CVS" ...
Marc G. Fournier Hub.Org Hosting Solutions S.A.
scrappy(at)hub(dot)org http://www.hub.org
Yahoo:yscrappy Skype: hub.org ICQ:7615664 MSN:scrappy(at)hub(dot)org
In response to
Responses
pgsql-www by date
Next :From: Magnus HaganderDate: 2011-02-25 15:04:28Subject : Re: RFC: Hosting mailing lists of 3rd party projectsPrevious :From : Robert HaasDate : 2011-02-25 13:59:01Subject : Re: criticism about hosting download packages
