https://www.big-8.org/w/index.php?action=history&feed=atom&title=Nan%3A2011-02-08-result-comp.security.announce 2026-05-05T14:20:54Z Revision history for this page on the wiki MediaWiki 1.43.1 https://www.big-8.org/w/index.php?title=Nan:2011-02-08-result-comp.security.announce&diff=1742&oldid=prev 2011-02-08T13:30:27Z

<p>Created page with &quot;&lt;pre&gt; From: Big-8 Management Board &lt;board@big-8.org&gt; Subject: RESULT: comp.security.announce will be removed Date: Tue, 8 Feb 2011 04:58:04 EST Message-ID: &lt;iir3tr$d49$1@four.alb...&quot;</p> <p><b>New page</b></p><div>&lt;pre&gt;<br /> From: Big-8 Management Board &lt;board@big-8.org&gt;<br /> Subject: RESULT: comp.security.announce will be removed<br /> Date: Tue, 8 Feb 2011 04:58:04 EST<br /> Message-ID: &lt;iir3tr$d49$1@four.albasani.net&gt;<br /> <br /> RESULT<br /> comp.security.announce will be removed<br /> <br /> The Last Call for Comments (LCC) on 2011-02-01 initiated a five-day<br /> period for final comments. Following this comment period, the Big-8<br /> Management Board has decided by consensus to remove moderated group<br /> comp.security.announce.<br /> <br /> RATIONALE:<br /> <br /> According to Google&#039;s archive there has been only one message posted to<br /> this group (on 28 July 2009) in the past three years.<br /> <br /> This group has no charter or archived FAQ. The latest &quot;List of Big<br /> Eight Newsgroups&quot; (15 December 2010) states that this group is for<br /> &quot;Announcements from the CERT about security.&quot; The latest two such<br /> announcements were on 28 July 2009 and 29 December 2005. There have<br /> been numerous alerts about security vulnerabilities in 2010 posted on<br /> the US-CERT Web site (see below), none of which have been posted to<br /> comp.security.announce.<br /> <br /> A newsgroup message sent to comp.security.announce on 24 November 2010<br /> did not appear posted on that group. A bounce was not possible because<br /> the From address was munged. Another message was sent on 28 November<br /> 2010 with a valid From address. That message too did not appear posted<br /> on the group.<br /> <br /> CERT is an organization within Carnegie Mellon University. E-mail to<br /> &lt;cert@cert.org&gt; -- the contact address indicated on the CERT Web site --<br /> asking if comp.security.announce is still being used resulted in a reply<br /> from a Jeff Smith with a cert.org E-mail address. Smith&#039;s reply was:<br /> &quot;David, we no longer post to newsgroups. Please check the US-CERT<br /> website for alternative ways of being alerted.&quot;<br /> <br /> US-CERT is an organization within the U.S. Department of Homeland<br /> Security. E-mail to &lt;info@us-cert.gov&gt;, &lt;soc@us-cert.gov&gt;, and<br /> &lt;us-cert@us-cert.gov&gt; -- addresses all indicated on the US-CERT Web site<br /> -- asking if comp.security.announce is still being used have resulted in<br /> no replies. The last such message was sent 28 October 2010.<br /> <br /> An E-mail message was sent to comp-security-announce@moderators.isc.org<br /> on 5 December 2010. Neither a bounce nor a reply were received.<br /> <br /> No replies to the 1st or 2nd RFD were posted to news.groups.proposals.<br /> <br /> NEWSGROUPS LINE:<br /> <br /> comp.security.announce Announcements from the CERT about security.<br /> (Moderated)<br /> <br /> DISTRIBUTION:<br /> <br /> news.announce.newgroups<br /> news.groups.proposals<br /> comp.security.announce<br /> comp.security.misc<br /> <br /> Folowup-To: news.groups.proposals<br /> <br /> CHARTER OF COMP.SECURITY.ANNOUNCE<br /> <br /> There is no charter archived at<br /> &lt;ftp://ftp.isc.org/pub/usenet/news.announce.newgroups/comp/&gt; for<br /> comp.security.announce.<br /> <br /> HISTORY OF THE GROUP:<br /> <br /> The earliest message posted to comp.security.announce found in Google&#039;s<br /> archive is dated 6 May 2000. For a number of years, messages about<br /> computer security vulnerabilities were posted when such vulnerabilities<br /> were discovered. Later, such messages were posted only after the<br /> vendors of the affected software or hardware released fixes. US-CERT<br /> now issues its messages via E-mail, RSS, and similar services to<br /> subscribers. Carnegie Mellon&#039;s CERT maintains a database, but I cannot<br /> locate a subscription service.<br /> <br /> PROPONENT:<br /> <br /> David E. Ross &lt;david@rossde.com&gt;<br /> <br /> CHANGE HISTORY:<br /> <br /> 2010-10-26 E-mail messages sent to CERT and US-CERT<br /> 2010-10-27 Reply received from CERT (group no longer used)<br /> 2010-10-28 Additional E-mail messages sent to US-CERT<br /> 2010-11-24 Newsgroup message sent to comp.security.announce (munged reply address)<br /> 2010-11-28 Newsgroup message sent to comp.security.announce (valid reply address)<br /> 2010-12-05 E-mail message sent to comp-security-announce@moderators.isc.org<br /> 2011-01-02 1st RFD<br /> 2011-01-17 2nd RFD<br /> 2011-02-01 LCC<br /> 2011-02-08 RESULT<br /> &lt;/pre&gt;</div>

Sbonine