From: Leo Famulari <leo@famulari.name>
To: Ricardo Wurmus <rekado@elephly.net>
Cc: guix-devel@gnu.org
Subject: Re: [opinion] CVE-patching is not sufficient for package security patching
Date: Wed, 24 Mar 2021 15:51:06 -0400 [thread overview]
Message-ID: <YFuYKgZgcf44KswI@jasmine.lan> (raw)
In-Reply-To: <875z1hv5tt.fsf@elephly.net>
[-- Attachment #1: Type: text/plain, Size: 1066 bytes --]
On Tue, Mar 23, 2021 at 11:54:54PM +0100, Ricardo Wurmus wrote:
> This seems to be a misunderstanding. The first step is to use the money
> we already have but cannot exchange for hardware, because
>
> - finding appropriate hardware that you can actually buy is not easy
> - hosting needs to be considered because we can’t just dump them in the
> MDC data centre where most of the Intel servers are hosted.
>
> We bought a handful of Overdrive 1000 in the past (they are no longer
> sold), and hosting was always an obstacle.
>
> While looking for ways to get the project some more money is certainly
> worthwhile, it’s really not the pressing issue here.
I volunteer to host one or two workstation-type 64-bit ARM machines.
Concretely, this would mean a Honeycomb LX2 or Ampere ALTRA workstation,
since I don't believe there are any other aarch64 workstations available
for sale.
https://www.solid-run.com/arm-servers-networking-platforms/honeycomb-workstation/
https://store.avantek.co.uk/ampere-altra-64bit-arm-workstation.html
[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 833 bytes --]
next prev parent reply other threads:[~2021-03-24 19:51 UTC|newest]
Thread overview: 22+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-03-16 11:10 [opinion] CVE-patching is not sufficient for package security patching Léo Le Bouter
2021-03-16 11:17 ` Jonathan Brielmaier
2021-03-16 11:27 ` Léo Le Bouter
2021-03-16 19:15 ` Leo Famulari
2021-03-16 23:19 ` Mark H Weaver
2021-03-16 23:49 ` Leo Famulari
2021-03-17 11:54 ` Guix moving too fast? zimoun
2021-03-17 6:07 ` [opinion] CVE-patching is not sufficient for package security patching Léo Le Bouter
2021-03-17 6:21 ` Léo Le Bouter
2021-03-20 11:19 ` Ludovic Courtès
2021-03-22 13:44 ` raingloom
2021-03-23 16:22 ` Joshua Branson
2021-03-23 23:53 ` Mark H Weaver
2021-03-23 17:56 ` Leo Famulari
2021-03-23 22:54 ` Ricardo Wurmus
2021-03-24 19:51 ` Leo Famulari [this message]
2021-03-24 20:24 ` Vincent Legoll
2021-03-24 20:32 ` Léo Le Bouter
2021-03-24 20:55 ` Leo Famulari
2021-03-25 14:22 ` Mathieu Othacehe
2021-03-25 18:19 ` Leo Famulari
2021-03-30 8:42 ` Buying AArch64 hardware? Ludovic Courtès
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=YFuYKgZgcf44KswI@jasmine.lan \
--to=leo@famulari.name \
--cc=guix-devel@gnu.org \
--cc=rekado@elephly.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/guix.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.