Linux Kernel Security Team
February 2, 2005 Leave a comment
Here's a quick follow up to this post. From the article:
The end result will likely be the creation of an invite-only mailing list to which people can choose to report security problems. Whether or not this list is actually used was unimportant to Linus, just that it was an available choice. “Let people vote with their feet. If vendor-sec ends up being where all the 'important' things are discussed – so be it. We've not lost anything, and at worst a 'kernel-security' list would be a way to discuss stuff that was already released by vendor-sec.”
Good to see that this issue was quickly resolved (and correctly resolved IMHO). You can read the entire proposed draft here.