Bug 1283131 - Attempt to avoid private data leaks in bugs opened by ABRT
Summary: Attempt to avoid private data leaks in bugs opened by ABRT
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Bugzilla
Classification: Community
Component: Creating/Changing Bugs
Version: 4.4
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: PnT DevOps Devs
QA Contact: tools-bugs
URL:
Whiteboard:
Depends On:
Blocks: 1279453 1279454
TreeView+ depends on / blocked
 
Reported: 2015-11-18 10:51 UTC by Jakub Filak
Modified: 2016-12-01 00:47 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2015-11-22 23:20:39 UTC
Embargoed:

Attachments (Terms of Use)

Description Jakub Filak 2015-11-18 10:51:08 UTC 
Hello,

I am a maintainer of ABRT and I would like to make Bugzilla bugs opened by ABRT from Red Hat Enterprise Linux viewable only by the creator and Red Hat employees. My intention is to avoid private data leaks from our customers and RHEL users at all.

We introduced something similar for Fedora users in bug #1044653.

Expected results:
- Bug #1243371 should be viewable by Lubomir Rintel (the creator).
- the bug details should be viewable only by Red Hat employees
Comment 1 Jeff Fearn 🐞 2015-11-18 22:54:12 UTC 
Hi Jakub, it looks to me that anyone should be able to set the 'private' group on a bug, which should achieve what you want. Can you give it a try and see?
Comment 2 Jakub Filak 2015-11-19 07:07:52 UTC 
It works! Thank you. Are there any restriction on usage of the group or can we set the group to all bugs opened by ABRT without bad consequences?
Comment 3 Jeff Fearn 🐞 2015-11-22 23:20:39 UTC 
(In reply to Jakub Filak from comment #2)
> It works! Thank you. Are there any restriction on usage of the group or can
> we set the group to all bugs opened by ABRT without bad consequences?

There are no effects aside from access being limited.
Note You need to log in before you can comment on or make changes to this bug.