add some instructions for hardening work

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@17234 e39458fd-73e7-0310-bf30-c45bca0a0e42

2 files changed, 19 insertions, 5 deletions

diff --git a/hardening/subgoal-dsa.txt b/hardening/subgoal-dsa.txt
index 8b2fabdb6d..ef4bd40c26 100644
--- a/hardening/subgoal-dsa.txt
+++ b/hardening/subgoal-dsa.txt
@@ -1,10 +1,13 @@
 Hardening subgoal for Wheezy:
 All packages, which had a DSA since 2006. 
 
+Instructions:
+- After checking a package, add it to the "Candidates:" or "Non-candidates:" list
+- After NMUing a candidate, add it to the "Resolved/fixed:" list
 
-This needs to cleaned up
-further:
-- Software written in PHP etc. need to be removed
+This lists needs cleaned up further:
+- Software written in non-C/C++ languages (PHP, etc.) should be added to 
+  the "Non-candidates:" list
 - Some packages have been removed/superceded by newer srcpkg (I did
   some cursory cleanup, but needs more work)
 
@@ -584,6 +587,10 @@ zope-cmfplone
 zope-ldapuserfolder
 zoph
 
+Non-candidates:
+
+Candidates:
+
 Resolved/fixed:
 
 
diff --git a/hardening/subgoal-important.txt b/hardening/subgoal-important.txt
index b6592ccdd9..f280428bf5 100644
--- a/hardening/subgoal-important.txt
+++ b/hardening/subgoal-important.txt
@@ -4,8 +4,12 @@ All packages of priority required or important. Generated with
 aptitude search '~prequired' | sed 's/\ A//' '{print$2}' 
 aptitude search '~pimportant' | sed 's/\ A//' '{print$2}
 
-This needs to cleaned up further:
-- Some all packages need to be removed (e.g. locales etc)
+Instructions:
+- After checking a package, add it to the "Candidates:" or "Non-candidates:" list
+- After NMUing a candidate, add it to the "Resolved/fixed:" list
+
+This list needs cleaned up further:
+- Packages not written in C/C++ should to be removed (e.g. locales etc)
 
 To check:
 
@@ -129,6 +133,9 @@ vim-tiny
 wget
 whiptail
 
+Non-candidates:
+
+Candidates:
 
 Resolved/fixed: