| Summary: | testing secteam bz secteam group (Make description private (visible only to members of the secteam group)) | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | Oden Eriksson <oe> |
| Component: | Security | Assignee: | Mageia Bug Squad <bugsquad> |
| Status: | RESOLVED FIXED | QA Contact: | |
| Severity: | normal | ||
| Priority: | Normal | CC: | dmorganec, luigiwalser, oe |
| Version: | 2 | ||
| Target Milestone: | --- | ||
| Hardware: | i586 | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Source RPM: | CVE: | ||
| Status comment: | |||
|
Description
Oden Eriksson
2013-02-11 11:33:29 CET
Oden Eriksson
2013-02-11 11:34:02 CET
CC:
(none) =>
luigiwalser
Oden Eriksson
2013-02-11 13:43:39 CET
CC:
(none) =>
dmorganec Oh, once dmorganec@gmail.com was added in cc I can see comment 1
Oden Eriksson
2013-02-11 13:44:48 CET
CC:
dmorganec =>
(none)
Oden Eriksson
2013-02-11 13:45:06 CET
CC:
(none) =>
dmorganec
Oden Eriksson
2013-02-11 13:45:34 CET
CC:
(none) =>
oe not related :) i am looking why config is wrong puppet empty the insidergroup entry, this is why you can't see comment 1 => WIP is it OK now ? The thing is certain embargoed security info cannot be public. PoCs or harmful code should not be public either. It's illegal in many countries to spread such code. This "Make comment private (visible only to members of the secteam group)" will help a bit, but is not perfect as mail could be transferred unencrypted over insecure links (eavesdropping). SSL and DNS in itself is flawed. This bugzilla installation in itself could be hacked. People with physical access to this server could leak info, etc. etc.
D Morgan
2013-02-12 19:19:47 CET
Status:
NEW =>
RESOLVED |