<div dir="ltr">Thought so, makes sense. thanks!</div><div class="gmail_extra"><br><br><div class="gmail_quote">On Tue, Nov 19, 2013 at 11:27 AM, Clark, Robert Graham <span dir="ltr"><<a href="mailto:robert.clark@hp.com" target="_blank">robert.clark@hp.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div lang="EN-GB" link="blue" vlink="purple"><div><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Bryan is right, the idea is to keep the group very small as some of the vulnerabilities can have significant impact on deployers.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">However, I’m sure there will be times when you and other significant OSSG contributors will be brought in to help on specific issues where you have expertise that will be very useful.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">Cheers<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">-Rob<u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>
<div style="border:none;border-left:solid blue 1.5pt;padding:0cm 0cm 0cm 4.0pt"><div><div style="border:none;border-top:solid #b5c4df 1.0pt;padding:3.0pt 0cm 0cm 0cm"><p class="MsoNormal"><b><span lang="EN-US" style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span lang="EN-US" style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> <a href="mailto:bdpayne@gmail.com" target="_blank">bdpayne@gmail.com</a> [mailto:<a href="mailto:bdpayne@gmail.com" target="_blank">bdpayne@gmail.com</a>] <b>On Behalf Of </b>Bryan D. Payne<br>
<b>Sent:</b> 19 November 2013 19:19<br><b>To:</b> Sriram Subramanian<br><b>Cc:</b> Clark, Robert Graham; <a href="mailto:openstack-security@lists.openstack.org" target="_blank">openstack-security@lists.openstack.org</a><br>
<b>Subject:</b> Re: [Openstack-security] OpenStack Security Group representation to the VMT<u></u><u></u></span></p></div></div><div class="im"><p class="MsoNormal"><u></u> <u></u></p><div><div><div><blockquote style="border:none;border-left:solid #cccccc 1.0pt;padding:0cm 0cm 0cm 6.0pt;margin-left:4.8pt;margin-right:0cm">
<div><div><p class="MsoNormal">I also wanted to know if it is OK for someone to join these calls as observers (as a learning experience).<u></u><u></u></p></div></div></blockquote><div><p class="MsoNormal"><u></u> <u></u></p>
</div><div><p class="MsoNormal">Unfortunately not.  The primary purpose of all of this is to minimize the number of people that know about vulnerabilities in OpenStack before they are fixed.  Hence the aim to keep the number of people involved to a small group.<u></u><u></u></p>
</div><div><p class="MsoNormal"><u></u> <u></u></p></div><div><p class="MsoNormal">-bryan<u></u><u></u></p></div></div></div></div></div></div></div></div></blockquote></div><br><br clear="all"><div><br></div>-- <br><div>
Thanks,</div><div>-Sriram</div>
</div>