GNU bug report logs - #68962
website: directly link the security mail address

Previous Next

Package: guix;

Reported by: Jonathan Brielmaier <jonathan.brielmaier <at> web.de>

Date: Tue, 6 Feb 2024 23:21:01 UTC

Severity: normal

Done: Maxim Cournoyer <maxim.cournoyer <at> gmail.com>

Bug is archived. No further changes may be made.

Full log

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Jonathan Brielmaier <jonathan.brielmaier <at> web.de>
To: bug-guix <at> gnu.org
Subject: website: directly link the security mail address
Date: Wed, 7 Feb 2024 00:19:51 +0100

Is there a reason why we don't link to the mail alias directly on the
security page:
https://guix.gnu.org/en/security/

Because the mailman archive doesn't make really sense for most of the
users as it's only accessible with a password.

What about this small patch?
```
diff --git a/website/apps/base/templates/security.scm
b/website/apps/base/templates/security.scm
index 8a72950..429e5df 100644
--- a/website/apps/base/templates/security.scm
+++ b/website/apps/base/templates/security.scm
@@ -43,7 +43,7 @@ system|GNU Hurd|GNU Guix package manager|Security
updates") #\|)
         `(p
           "To report sensitive security issues in Guix itself or the
            packages it provides, you can write to the private mailing
list "
-          (a (@ (href
"https://lists.gnu.org/mailman/listinfo/guix-security"))
+          (a (@ (href "mailto:guix-security <at> gnu.org"))
              ("guix-security <at> gnu.org")) ".  This list is monitored by a
            small team of Guix developers."))
       ,(G_
```

Or is this an anti-spam measure?

~Jonathan
This bug report was last modified 351 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.