https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=21301
--- Comment #15 from Fridolin SOMERS <fridolin.som...@biblibre.com> --- (In reply to Marcel de Rooy from comment #8) > > Is this really a privacy issue? In order to identify the person associated > with borrowernumber 5, you'll need additional information. > So if this is just theoretical, then removing the borrowernumber might not > be enough ;) If I have biblionumber and reservedata or timestamp, I might > also be able to find the associated borrower? > > No blocker, just pushing a bit.. Valid question yep. In my opinion removing borrowernumber is also to avoid using some scripts vulnerability with a valid DB id that may allow SQL injection or data leaking. -- You are receiving this mail because: You are watching all bug changes. _______________________________________________ Koha-bugs mailing list Koha-bugs@lists.koha-community.org https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/