Forum OpenACS Development: Re: Security breach switching ips

Collapse
Posted by Iuri Sampaio on
Hi Ben,

Thanks for your explanation and I apologizes for posting in the forum before document it on bug-tracker.

I'll proceed further with doumentation.
Best wishes,

Collapse
Posted by Iuri Sampaio on
Fuerthermore,

How do I know to whom I must assign the bug? I have no idea what package this bug would belong.

The fixes will have to be applied in the core packages such as acs-kernel, acs-authentication, acs-tcl and so on, and I don't know who is responsible for which package.

Perhaps, that's a good example that we could use to clean up a few processes in the BUG tracker workflow. Couldn't we?

Collapse
Posted by Benjamin Brink on
Hi Iuri,

The bug submission form will assign automatic defaults for values that are not required.

cheers,
Ben

Collapse
Posted by Iuri Sampaio on
Hi Ben,

I've opened the thread to confirm that it is an actual bug, before open and assign it to the responsible person. For instance, I'm still reluctant to classify it as a bug because of one main reason.

Both instances are the same. Meaning, they are a copy of source code and DB.

Would that be an argument to explain the behaviour and exempt the scenario from classifying it as bug (i.e. a security breach)

Best wishes,