Community mailing list archives

community@mail.odoo.com

Re: Security - Odoo enterprise - DB access

by
Vauxoo S.A. de C.V., Nhomar Hernandez
- 04/18/2016 21:23:38

On Mon, Apr 18, 2016 at 8:11 PM, Andreas Becker <andi@lisandi.com> wrote:

To increase TRUST in Odoo it would be much much better to provide the patch asap for everyone and of course publish the security issue immediately after it has been discovered, so that ALL users are warned, especially also those who are using not the Enterprise version

Patch are availables since they are released into public repositories, what is paid is the **announce itself with the proper explanation to work with it.

Even docker, hub, redhat, _________ < name it : have a security annouce policy (which is normal) and it is paid (which is normal).

If you use any communitary software you should manage your deployment environments technically in a correct way, frequently and with proper auditory process (that's why announce itself is a service not a technical element).

Seven years from now it has been on that way.
--
Nhomar Hernandez
CEO Vauxoo.
Twitter: @nhomar
Odoo Gold Partner
Skype: nhomar00 (Envia mail previo no lo superviso siempre).
Móvil Venezuela:
+58 4144110269
Móvil México:
+52 1 4773933942