Red Hat Bugzilla – Bug 194008
Information of cla_done group leaking
Last modified: 2008-05-13 19:45:54 EDT
Description of problem:Anyone can see who signed CLA and their full name and
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1.Access to the URL
Anybody can see the information.
Only community members able to see it.
This doesn't only happen with the cla_done group, change it in the URL to
another group and you get to see everything from that group.
It seems we will have private policy.
Googlebot already knows the page:( and googling my mail address returns the
URL at the top.
Although account system should be fixed, shouldn't we, at least, have robot.txt?
The old accounts system has been gone for a while now, so I assume this issue no
longer exists. Please file issues regarding the new accounts system here: