[Koha-devel] Reporting security bugs
Galen Charlton
gmc at esilibrary.com
Wed Feb 5 00:31:08 CET 2014
Hi,
On Tue, Feb 4, 2014 at 2:52 PM, Robin Sheat <robin at catalyst.net.nz> wrote:
> Also, would it perhaps be good to autosubscribe the people on that list
> to the bug (if that's not happening already)?
We'll need to figure out the best way of doing this, since there is no
way in BZ to specify that members of a given group should receive all
notifications for a given component.
Options include:
[1] Individually including everybody in the security team on the
component's default CC list. I don't like this because of the
maintenance burden and because it reduces the member's control over
what gets emailed to them.
[2] Creating a private email list that would become the default
assignee or the default CC list. Such a list could also be used for
internal security discussions. This is my preference.
[3] Creating a special account that becomes the default assignee, and
that members of the security team could choose to "follow" in BZ.
Regards,
Galen
--
Galen Charlton
Manager of Implementation
Equinox Software, Inc. / The Open Source Experts
email: gmc at esilibrary.com
direct: +1 770-709-5581
cell: +1 404-984-4366
skype: gmcharlt
web: http://www.esilibrary.com/
Supporting Koha and Evergreen: http://koha-community.org &
http://evergreen-ils.org
More information about the Koha-devel
mailing list