On Wed, 4 Mar 2009 10:13:31 -0500 James Carlson
<james.d.carl...@sun.com> wrote:
> That doesn't sound quite right to me. When a real security bug is
> filed, the *submitter* must mark it that way, even if the submitter is
> not part of the special group.
Yes, Bugzilla does actually support that.
> More generally, it'd be nice to have a "private to group X" flag.
> That would allow Intel (or any other contributor) to file their own
> sensitive bugs, and manage them as they see fit.
Yep, that's how Bugzilla works, it can do that.
> I'm not sure I understand that one. Either a bug is being cloaked
> because it's security sensitive or it's not. Why would there be two
> flags?
Timeless means that a bug could be restricted to different
groups and you might possibly have a choice depending on how the groups
are set up.
-Max
--
http://www.everythingsolved.com/
Competent, Friendly Bugzilla and Perl Services. Everything Else, too.
_______________________________________________
tools-discuss mailing list
tools-discuss@opensolaris.org
