Securing Bugzilla

To: debian-security@lists.debian.org
Subject: Securing Bugzilla
From: Todd Charron <tcharron@mnsi.net>
Date: 24 Sep 2002 10:55:19 -0400
Message-id: <[🔎] 1032879319.23152.5.camel@lan-19a>

Hi,
  I've recently been looking to setup bugzilla as a way to keep track
of... well... bugs ;)  Anyway, while setting it up I noticed it was
recommended for security to set create htaccess to 1 so that proper
.htaccess files can be generated.  However, I also noticed that doing
this on debian seems to have no effect and htaccess files are not
generated.  Looking at the checksetup.pl file there's a comment "#  No
htaccess on debian" and disables it (overriding the user defined
setting).  
  So my question is two parts.  
1) Why is htaccess disabled on Debian? (in bugzilla at least)  
and 
2) Is it possible then to securely use bugzilla on Debian?  If so what
is the easiest way.  

I've tried emailing the maintainer but have yet to receive a response,
so I thought I'd toss it out here and see if anyone had any insight.

Thanks in advance,

Todd

Reply to:

Follow-Ups:
- Re: Securing Bugzilla
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Re: Block 198.175 admins? who are they?
Next by Date: Re: Securing Bugzilla
Previous by thread: Re: Block 198.175 admins? who are they?
Next by thread: Re: Securing Bugzilla
Index(es):
- Date
- Thread