Thanks for the security review, rechecking the open asks we had to check
if we are fully ready.
A lot has been addressed already:
- #1 Better testing
I see a discovery test (the main use case) and a run of the regression suite.
Thanks for adding that!
- #2 d/watch file
Added, thanks!
- #4 Integration to e.g. Nautilus
Thanks for the pointers, helped me and might help others later.
But also those below are not yet addressed AFAICS
- #3 Add isolation (could be apparmor or anything else, just more defense in
depth if things go rougue)
- #4 (sorry, I failed to assign unique indexes -call it #5 from now onw)
Firewall usage
In fact you can consider both asks for isolation of some sort, once from
networking and once from the system.
We try to encourage and be stricter about these (hence the explicit addition to
the rules a while ago) and on the other hand as outlined in my review even the
software itself calls for please being run in trusted environment behind
isolation.
Yet OOTH you got a security ACK this might be fine already and I do not want to
be pedantic.
I'm simply not sure how much I'd want to insist on isolation or not.
Let us become sure and ask the security person in the MIR team
(assigning Seth) about that and try to discuss it in the MIR meeting to
come to a conclusion on the current state being ready or requiring
(some) isolation to be there.
** Changed in: wsdd (Ubuntu)
Assignee: (unassigned) => Seth Arnold (seth-arnold)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2070025
Title:
[MIR] wsdd
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/wsdd/+bug/2070025/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
