[Xen-devel] [PATCH SECURITY-POLICY 0/9] Re: Security policy ambiguities - XSA-108 process post-mortem

["Jan Beulich" <JBeulich@xxxxxxxx>]

>>> On 16.01.15 at 20:48, <ijackson@xxxxxxxxxxxxxxxxxxxxxx> wrote:
> Lars Kurth writes ("Re: [Xen-devel] Security policy ambiguities - XSA-108 
> process post-mortem"):
>> I would say, give it a week for further feedback and then prepare a patch.
> 
> It's been rather longer than a week - sorry.
> 
> I would like to propose the following series of changes to the Xen
> Project Security Policy.  For readability I have presented them as
> diffs to a reasonably-plausibly-formatted HTML.

LGTM, but I think there's no point in ack-ing the series as the
changes need to be voted on anyway.

One thing I'm missing though is some statement regarding the
handling of existing list members when the policy changes (while
the agreement given by them during the application process was
only for an earlier version).

Jan


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel