[Secure-testing-commits] r3594 - bin
Florian Weimer
fw at costa.debian.org
Sat Mar 11 18:27:40 UTC 2006
Author: fw
Date: 2006-03-11 18:27:37 +0000 (Sat, 11 Mar 2006)
New Revision: 3594
Modified:
bin/tracker_service.py
Log:
Incorporate Micah's changes.
bin/tracker_service.py (TrackerService.page_home):
Modernize.
(TrackerService.page_report):
New page.
Modified: bin/tracker_service.py
===================================================================
--- bin/tracker_service.py 2006-03-11 18:26:28 UTC (rev 3593)
+++ bin/tracker_service.py 2006-03-11 18:27:37 UTC (rev 3594)
@@ -103,6 +103,7 @@
self.register('data/funny-versions', self.page_data_funny_versions)
self.register('data/fake-names', self.page_data_fake_names)
self.register('debsecan/**', self.page_debsecan)
+ self.register('data/report', self.page_report)
def page_home(self, path, params, url):
query = params.get('query', ('',))[0]
@@ -115,14 +116,26 @@
return self.create_page(
url, 'Security Bug Tracker',
[P(
- """This is the experimental issue tracker for Debian's testing
-security team. Keep in mind that this is merely a prototype.
-Please report any problems to """,
- A("mailto:fw at deneb.enyo.de", "Florian Weimer"),
- """.Note that some of the data presented here is known
-to be wrong (see below), but the data for the testing suite
-should be fine."""),
- make_menu(
+ """The data in this tracker comes solely from the bug database maintained
+by Debian's security team located in the testing-security Subversion """,
+ A("http://svn.debian.org/wsvn/secure-testing/data", "repository"),
+ """. The data represented here is derived from: """,
+ A("http://www.debian.org/security/#DSAS", "DSAs"),
+ """ issued by the Security Team; issues tracked in the """,
+ A("http://www.cve.mitre.org/cve/index.html", "CVE database"),
+ """, issues tracked in the """,
+ A("http://nvd.nist.gov/", "National Vulnerability Database"),
+ """ (NVD), maintained by NIST; and security issues
+discovered in Debian packages as reported in the BTS."""),
+ P("""All exteral data (including Debian bug reports and official Debian
+security advisories) must be added to this database before it appears
+here. Please help us keep this information up-to-date by""",
+ A(url.scriptRelative("data/report"), "reporting"),
+ """ any discrepancies or change of states that you are
+aware of and/or help us improve the quality of this information by """,
+ A(url.scriptRelative("data/report"), "participiating"),
+ "."),
+ make_menu(
url.scriptRelative,
('status/release/unstable',
'Vulnerable packages in the unstable suite'),
@@ -150,21 +163,6 @@
P("""(You can enter CVE names, Debian bug numbers and package
names in the search forms.)"""),
- H2("Data sources"),
- P("""Data in this tracker comes solely from the bug database
-which is maintained by Debian's testing security team in their
-Subversion repository. All external data (this includes
-Debian bug reports and official Debian security advisories)
-must be added to this database before it appears here, and there
-can be some delay before this happens."""),
- P("""At the moment, the database only contains information which is
-relevant for tracking the security status of the stable, testing and
-unstable suites. This means that data for oldstable is likely wrong."""),
- P('Data marked "NVD" comes from the ',
- A(url.absolute('http://nvd.nist.gov/'),
- 'National Vulnerability Database'),
- ' maintained by NIST.'),
-
H2("External interfaces"),
P("""If you want to automatically open a relevant web page for
some object, use the """,
@@ -446,6 +444,40 @@
' matched no results.')],
status=404)
+ def page_report(self, path, params, url):
+ return self.create_page(
+ url, 'Reporting discrepancies in the data',
+ [P("""The data in this tracker is always in flux, as bugs are fixed and new
+issues disclosed, the data contained herein is updated. We strive to
+maintain complete and accurate state information, and appreciate any
+updates in status, information or new issues."""),
+ P("There are three ways that you can report updates to this information:"),
+ make_numbered_list(
+ [P("""IRC: We can be found at """,
+ CODE("irc.oftc.net"),
+ ", ",
+ CODE("#debian-security"),
+ """. If you have information to report, please go ahead and join
+the channel and tell us. Please feel free to state the issue,
+regardless if there is someone who has acknowledged you. Many of us
+idle on this channel and may not be around when you join, but we read
+the backlog and will see what you have said. If you require a
+response, do not forget to let us know how to get a hold of you."""),
+ P("Mailing list: Our mailing list is: ",
+ A("mailto:secure-testing-team at lists.alioth.debian.org",
+ "secure-testing-team at lists.alioth.debian.org")),
+ P("""Helping out: We welcome people who wish to join us in tracking
+issues. The process is designed to be easy to learn and participate,
+please read our """,
+ A("http://svn.debian.org/wsvn/secure-testing/doc/narrative_introduction",
+ "Introduction"),
+ """ to get familiar with how things work. Join us on
+our mailing list, and on IRC and request to be added to the Alioth """,
+ A("http://alioth.debian.org/projects/secure-testing/", "project"),
+ """. We are really quite friendly. If you have a
+question about how things work, don't be afraid to ask, we would like
+to improve our documentation and procedures, so feedback is welcome.""")])])
+
def page_source_package(self, path, params, url):
pkg = path[0]
More information about the Secure-testing-commits
mailing list