Open Stack

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 01/13/2014 06:13 PM, Kurt Seifried wrote:
> On 01/13/2014 05:27 PM, Grant Murphy wrote:
> 
> 
>> On Mon, 2014-01-13 at 08:24 -0800, Nathan Kinder wrote:
>>> Hi,
> 
>> Hi Nathan,
> 
>>> 
>>> I have started to put together a wiki page skeleton outlining 
>>> the process to follow when writing a new Security Note (OSSN).
>>> I think it's far enough along to share.  Any feedback and 
>>> suggestions would be appreciated!  The new page is available 
>>> here:
>>> 
>>> https://wiki.openstack.org/wiki/Security/Security_Note_Process
>>> 
>>> There are a few things that I think need to be added or 
>>> clarified:
>>> 
>>> - Do we want to change the numbering scheme?  We've discussed 
>>> using something similar to the OSSA numbering scheme
>>> (YYYY-XX). This would be an improvement over what we currently
>>> use (Launchpad bug #).
> 
> One note I would use the same number sequence, e.g.:
> 
> OSSA-2014-01 OSSA-2014-02 OSSN-2014-03
> 
> The reason for this: "OSSA-2014-01" vs "OSSN-2014-01" is kind of 
> messy, harder to search/etc. Also I would advice using more than 2 
> digits (3 should be safe).

I like it.  That prevents the OSSA/OSSN confusion problem and it also
has the benefit of allowing us to easily compare the publishing date
between an OSSA and OSSN.

> 
> 
> 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBAgAGBQJS1J+gAAoJEJa+6E7Ri+EVA54H/1bmVEPdceEgb1XuVBY/P6dU
lqUE/6NfbRXzFWf4YXiY6REtzn3lHh+pkA44N9hU1LqTdK5p/KaO/9W0eBiCt+3L
xMJETZpCUteZ4U2xFhjlAob9CBuw9P2GoWHxyLNRVZFbSONGOaxz8SovIV+sl0SK
I9vvn5SCzmBhKkwnXsB76ka5gzG1esI+Pkzh7/j5aXfHYDmhYfJ/7ea3RoK7hr1r
hjRKOlvB/BgBDvnrU/PfLSlf60xK3hPzXqX0neG7dX9pZ5WP2EtstxRbNSSV89Af
vl4hZRapV3L7c1zyPk6quycRw03FEJZk2+T31l1MIg44/LMMEBk1K0f4O3v0nKQ=
=Ajh9
-----END PGP SIGNATURE-----