lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <17c526d0c5f8ed8584f7bee9afe1b73753d1c70b.camel@gmx.com>
Date:   Sat, 14 Nov 2020 17:40:36 +0200
From:   Hussam Al-Tayeb <ht990332@....com>
To:     Linux Kernel Mailing List <linux-kernel@...r.kernel.org>
Subject: Suggestion: Lengthen the review period for stable releases from 48
 hours to 7 days.

Hello. I would like to suggest lengthening the review period for stable
releases from 48 hours to 7 days.
The rationale is that 48 hours is not enough for people to test those
stable releases and make sure there are no regressions for particular
workflows.
This is especially important for companies deploying those kernels in
production machines. Often those releases are on weekends as well
further limiting the ability to test.
It is of course possible to skip stable updates that have large numbers
of patches and only update once a month but I feel a longer testing
period will work best for everyone.
It is, of course, always possible to exempt urgent security releases
from the waiting period.

Thank you.
Hussam.

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ