Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <218e3919b8d7666c70e024d08acf668f855c314c.camel@redhat.com>
Date: Thu, 23 Jul 2020 16:19:03 -0600
From: Jeff Law <law@...hat.com>
To: oss-security@...ts.openwall.com
Cc: "Alban Crequy (Kinvolk)" <alban@...volk.io>, volkerdi@...ckware.com
Subject: Re: Flatcar membership on the linux-distros list

On Fri, 2020-07-24 at 00:01 +0200, Solar Designer wrote:
> On Thu, Jul 23, 2020 at 01:44:46PM -0600, Jeff Law wrote:
> > On Thu, 2020-07-23 at 20:45 +0200, Solar Designer wrote:
> > > OK.  It looks like we'll add Flatcar as soon as an existing member
> > > vouches for you.
> > In what way do you need someone to vouch for Vincent?
> 
> This requirement is currently loosely specified as:
> 
> "Have someone already on the private list, or at least someone else who
> has been active on oss-security for years but is not affiliated with
> your distro nor your organization, vouch for at least one of the people
> requesting membership on behalf of your distro (then that one
> vouched-for person will be able to vouch for others on your team, in
> case you'd like multiple people subscribed)"
> 
> So someone who's on (linux-)distros "or at least someone else who has
> been active on oss-security for years but is not affiliated" should
> state in here that they vouch for Vincent.  They may optionally make
> this more specific (yet convincing) if they like, but that isn't
> required.
So I'm no longer affiliated with Vincent since he's left Red Hat and I'm not
affiliated with flatcar at all.  We loosely worked together at Red Hat and I'll
certainly vouch for Vincent.

I'm not sure how long I've been on oss-security, but I was the primary designer
and implementor of the stack-clash mitigations for GCC and consultant for the
LLVM stack-clash mitigations, as well as Red Hat's lead on the compiler side of
spectre mitigations.

Hope that helps,
Jeff

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.