On 1/24/07, Philip Hands <[EMAIL PROTECTED]> wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Joerg Jaspert wrote:
> On 10908 March 1977, Don Armstrong wrote:
>
>>>> [EMAIL PROTECTED] We should discourage direct reports to
>>>> the list and ask for bugs reports instead. Same deal as in tech-ctte.
>>>> Thoughts?
>>> As someone who is subscribed to [EMAIL PROTECTED] because I'm a
>>> local-admin of debian.org machines, this sounds good to me. It will help
>>> organize things and will probably result in less mail to the list overall.
>> I personally have no objections to creating it, I'd just like a few
>> more of the people who would be handling issues filed there to give
>> their yeay/nay.
>
> Same as matt, Im local admin of debian.org machines and I am in favor of
> this.
I think this, or at least a dedicated request tracker for debian-admin, is
an eminently sensible idea.
Perhaps rt would be better, since the problem with the bug tracking system
being open to all is that we're going to have to split the security
sensitive stuff out so that it's only sent to the mailing-list, and then
finding all the information for an issue later is going to be a bit of a
pain when some of it is missing from the bug report.
Hi Phil,
Thanks for your answer!
I really disagree with rt usage (let me make clear that i like the
tool). I would prefer we keep using the BTS, if you fear security
issues leaking we can work on something to avoid search engine
following the links and if the bug is tagged as security, hide it from
the web interface or let it be viewed only by a person with an account
into the project.
The alternative is that we can setup a private BTS (eg.:
bugs-private.debian.org) where to see any report on the web the user
needs an account. You know, just let teach debbugs authenticate or
use web server authenticate over LDAP. I'm volunteering to set it up
if needed, i'm sure that security team can benefit too.
regards,
-- stratus
http://stratusandtheswirl.blogspot.com
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
