From 9345120e105c212762dbbe9636842e2791c8850e Mon Sep 17 00:00:00 2001 From: Neil McGovern Date: Sun, 28 May 2006 16:22:16 +0000 Subject: Modified various bits and pieces to point at security.d.o instead of the old archive (sorry it's taken so long, I blame DebConf) git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@4087 e39458fd-73e7-0310-bf30-c45bca0a0e42 --- website/index.html | 52 +++++++++++++--------------------------------------- 1 file changed, 13 insertions(+), 39 deletions(-) (limited to 'website') diff --git a/website/index.html b/website/index.html index aacacb3903..c640f98294 100644 --- a/website/index.html +++ b/website/index.html @@ -98,23 +98,6 @@ svn://svn.debian.org/secure-testing/.

-

secure-testing mirrors

- -

The following mirrors are available:

- - -

If you want to mirror secure-testing.debian.net, - please see mirroring.html for detailed information.

- -

Uploads to the secure-testing repository

@@ -128,8 +111,8 @@ breaking secure-testing too badly with fixes that have not been tested first in unstable.

  • Only make uploads for issues that the testing security - team plans to issue a DTSA announcement for. It is best to - contact the team first to avoid duplicate work.
  • + team plans to issue a DTSA announcement for. + Contact the team first to avoid duplicate work.
  • Use a version number that is less than the version number of the fix in unstable, but greater than the version number of the fix in testing. For example, if the fix is in @@ -147,13 +130,13 @@
  • Test the package.
  • Sign the package. Any Debian developer in the keyring can do so.
  • -
  • Upload to secure-testing-master.debian.net. +
  • Upload to security-master.debian.org. Here is a dput.cf snippet for that upload queue:
    -		[secure-testing]
    -		fqdn = secure-testing-master.debian.net
    +		[secured-testing]
    +		fqdn = security-master.debian.org
     		method = ftp
    -		incoming = /pub/UploadQueue/
    +		incoming = /pub/OpenSecurityUploadQueue/
     		login = anonymous
     		
  • @@ -162,34 +145,25 @@ list and, it will become available in this apt repository, including builds for all other architectures:
    -		deb http://secure-testing.debian.net/debian-secure-testing etch-proposed-updates/security-updates main contrib non-free
    -		deb-src http://secure-testing.debian.net/debian-secure-testing etch-proposed-updates/security-updates main contrib non-free
    +		deb http://security.debian.org/ testing/updates main contrib non-free
    +		deb-src http://security.debian.org/ testing/updates main contrib non-free
     		
    - Build logs can be found - here with - distribution-name etch-secure. - Once everything is ready, contact a team member to issue a - DSTA. + Build logs are mailed to the team, and must be signed. Once everything is ok, a team member will issue a DTSA.

    - To issue a DTSA, team members follow this checklist: + To issue a DTSA, team members follow this checklist (note: this may change once newamber is fixed to use our templates):

      -
    1. Commit an initial .adv template into SVN to prevent duplicate work and claim an advisory number -
    2. Prepare the update and fill out the .adv template -
    3. Make sure everything is ready. +
    4. Commit an initial .adv template into SVN to prevent duplicate work and claim an advisory number +
    5. Prepare the update and fill out the .adv template +
    6. Make sure everything is ready.
    7. cd data/DTSA; ./dtsa -p ADVISORYNUMBER
    8. check DTSA-n-1 and DTSA-n-1.html. Remove TODO line for advisory from the list file
    9. mv DTSA-n-1.html ../../website/DTSA/
    10. cd ../../website; ../bin/updatehtmllist --output list.html ../data/DTSA/list
    11. cd ../; svn add website/DTSA/DTSA-n-1.html; svn commit
    12. -
    13. Edit data/DTSA/hints/yourname, and add a hint to make dtsasync - propigate the update from etch-proposed-updates to etch. - Commit the file and wait 15 minutes for the dtsasync run, - then check the log file and/or - upgrade a test machine.
    14. cd data/DTSA; ./sndadvisory DTSA-n-1
    15. Edit CVE/list and DSA/list to list the version of the package that is in the secure-testing archive as fixing the -- cgit v1.2.3