shawn.webb at hardenedbsd.org
Mon Mar 21 21:41:35 UTC 2016
On Sun, Mar 20, 2016 at 04:32:35PM -0400, Carmel wrote:
> On Sun, 20 Mar 2016 16:42:54 +0100, Kurt Jaeger stated:
> >> >The make check of clamav exposes some issues, I've reported them
> >> >upstream:
> >> >
> >> >https://bugzilla.clamav.net/show_bug.cgi?id=11542
> >> For whatever reason, I keep getting this error message when I try an
> >> access that report:
> >> You are not authorized to access bug #11542.
> >Yes. It seems clamav bugzilla is restrictive and I can not change
> >that, as submitter of that bug.
> Now that makes about "ZERO" sense. Why would you (meaning clamav) want
> to hide bug information? Dumbest thing I ever saw (almost).
ClamAV does that so that security-related bug reports remain private.
The submitter can always ask for the bug report to be opened to the
public if the bug report is not security-related. FreeBSD essentially
does the same thing as they ask those submitting security-related bugs
send reports to a special email (secteam at freebsd.org) instead of using
GPG Key ID: 0x6A84658F52456EEE
GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89 3D9E 6A84 658F 5245 6EEE
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 819 bytes
Desc: not available
More information about the freebsd-ports