Date: 13 Sep 1996 16:39:24 -0700 From: Paul Traina <pst@jnx.com> To: Peter Wemm <peter@spinner.DIALix.COM> Cc: freebsd-bugs@freebsd.org Subject: Re: conf/1608: FreeBSD's bug tracking system does not respect confidential Message-ID: <7yrao6f0ib.fsf@base.jnx.com> In-Reply-To: peter@spinner.DIALix.COM's message of 13 Sep 96 22:20:02 GMT References: <199609132220.PAA22198@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
peter@spinner.DIALix.COM (Peter Wemm) writes: > Well, since the summaries of outstanding PR's are also sent to the list, > we don't have much use for the 'confidential' header. What are we > supposed to do? Look at the PR numbers when they arrive from the mailing > list and notice that one of them was skipped, and go and see what happened > to it? Confidential reports should be sent to a small list (read administrator). The summary reports that we generate are supposed to restrict the confidential tag (I sure as hell know I put that in the code), as does the WWW interface. > IMHO, unless we find somebody to filter them by hand, we should delete the > confidential: header from the skeleton entirely and make the incoming > filter refuse them, giving instructions on the correct place to send > security problems and contact addresses for keepers of major parts of the > system if it's really essential that it not go out on the mailing lists. > Remember, the gnats database is also going out via ctm to the public. The gnats database should not be going out via CTM, and as soon as we have remote gnats installed, I suggest killing that distribution method.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7yrao6f0ib.fsf>