| 27 Nov 2024 |
 hexa | security is already down here | 01:38:30 |
| hexa | we already get lots of useful reports | 01:38:34 |
| hexa | implementing well-known security is what is currently missing | 01:40:16 |
| hexa | https://en.wikipedia.org/wiki/Security.txt | 01:41:03 |
| hexa | https://datatracker.ietf.org/doc/html/rfc9116 | 01:41:15 |
| hexa | you kinda went in without a concrete plan | 01:41:41 |
| hexa | prior art was linked early on and not acted upon | 01:42:01 |
 crertel | I was asking for a plan, and the information you just gave me--which would've been helpful to have on a comment on that PR--is a big help. Thank you! | 01:42:05 |
| crertel | There's another philosophical question which is: would it be a good idea to put security right on the navbar? My personal bet is yes, because:
- there was a semi-high-profile kerfluffle earlier this year and not having an obvious single touchpoint seems to have hurt there.
- more generally (outside of internal NixOS stuff), one of the hugely useful things about using NixOS is supply chain integrity and other things of interest to security-conscious users.
| 01:45:33 |
| hexa |
there was a semi-high-profile kerfluffle earlier this year and not having an obvious single touchpoint seems to have hurt there.
Uh … what?
| 01:46:31 |
| hexa | I don't mind whether it is down there or up there, but the start page mentions security a bit too much | 01:47:15 |
| hexa | 
Download image.png | 01:47:18 |
| hexa | moving it up would improve the tab order | 01:47:36 |
| crertel | Sure, and we could probably stand to ditch a tab or two as well...it is a little busy. | 01:48:02 |
| crertel | (and again, I'm not wed to this, just kicking around an idea) | 01:48:19 |
 avocadoom | Hmmm, at some point we maybe should consider some kind of drop down menu for the main nav, otherwise this would clog up a lot | 01:49:01 |
