Fedora Security Response Team
Last week was a rather slow news week as far as security news goes. The biggest news that should affect Fedora would be the fact that the Fedora Security Response Team has finally gotten off the ground. The group is currently pouring over the current list of known CVE ids to determine if we've missed any old flaws in Fedora 7. Once that's done the team will take over the constant task of parsing all the new vulnerabilities that affect Fedora 7.
Anyone is welcome to help in this effort. One of the team goals is to keep things open and transparent. Anytime security work is being done, it is hard to keep the process open for a number of reasons. One of the bigger reasons is that if all the information isn't public, it can be easy to sweep certain flaws under the rug and forget about them. This is bad for any project, especially something like Fedora.
If you have any interest in this group, feel free to join the
mailing list, or stop by #fedora-security on Freenode. All are welcome, there's plenty of work to do. It's still a small team, but the current group seems to be doing a fine job. More informatoin on the team can be found on the wiki:
http://fedoraproject.org/wiki/Security/ResponseTeam
