Re: spam closes Debian bugs!

To: debian-devel@lists.debian.org, schizo@debian.org, lists@mehnle.net
Subject: Re: spam closes Debian bugs!
From: Bernd Eckenfels <lists@lina.inka.de>
Date: Wed, 17 Mar 2004 04:21:15 +0100
Message-id: <[🔎] 20040317032115.GA4014@lina.inka.de>
In-reply-to: <[🔎] 20040317023326.GB22384@hezmatt.org>
References: <[🔎] E1B294o-0004OI-2p@mid.downhill.at.eu.org> <[🔎] EHEOIEJMBFBKCKMPHFJKAEJOFFAA.lists@mehnle.net> <[🔎] 20040313193528.GA3952@scowler.net> <[🔎] 20040316182822.GJ19333@flounder.net> <[🔎] 20040317015411.GA5687@keitarou.bubblesworth.net> <[🔎] 20040317015451.GP19333@flounder.net> <[🔎] 20040317023326.GB22384@hezmatt.org>

On Wed, Mar 17, 2004 at 01:33:26PM +1100, Matthew Palmer wrote:
> As for a malicious attack (someone getting a list of all open bug reports
> and sending a giant "close NNN" for all of them to control@), the only way
> to protect against that is severe restriction of the BTS controls, which is
> going to annoy a lot of people who are currently contributing quietly but
> who don't particularly want to go through the hassle of getting access - and
> any meaningful form of getting access will be a hassle.

A better method is, to allow easy undo. You can for example see this in Wiki
systems. As long as you can keep track who did what, and can undo the
effects, you can have a authorisation less system.

However, the first simple protection would be to have the xxx-action@
aliases do some kind of (pseudo) header checking. to reduce the number of manual
interverntions.

Any ACL is DEADLY - it will effectively stop volunteers.

Greetings
Bernd
-- 
  (OO)      -- Bernd_Eckenfels@Mörscher_Strasse_8.76185Karlsruhe.de --
 ( .. )      ecki@{inka.de,linux.de,debian.org}  http://www.eckes.org/
  o--o     1024D/E383CD7E  eckes@IRCNet  v:+497211603874  f:+497211603875
(O____O)  When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!

Reply to:

Follow-Ups:
- Re: spam closes Debian bugs!
  - From: Matthew Palmer <mpalmer@debian.org>
- Re: spam closes Debian bugs!
  - From: Adam Borowski <kilobyte@mimuw.edu.pl>

References:
- Re: spam closes Debian bugs!
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>
- RE: spam closes Debian bugs!
  - From: "Julian Mehnle" <lists@mehnle.net>
- Re: spam closes Debian bugs!
  - From: Clint Adams <schizo@debian.org>
- Re: spam closes Debian bugs!
  - From: Adam McKenna <adam@flounder.net>
- Re: spam closes Debian bugs!
  - From: Paul.Hampson@anu.edu.au (Paul Hampson)
- Re: spam closes Debian bugs!
  - From: Adam McKenna <adam@flounder.net>
- Re: spam closes Debian bugs!
  - From: Matthew Palmer <mpalmer@debian.org>

Prev by Date: Re: What about removing mozilla-snapshot from unstable as well?
Next by Date: Re: spam closes Debian bugs!
Previous by thread: Re: spam closes Debian bugs!
Next by thread: Re: spam closes Debian bugs!
Index(es):
- Date
- Thread