Closed Bug 1037967 Opened 10 years ago Closed 9 years ago

[mig] recurring actions

Categories

(Enterprise Information Security Graveyard :: MIG, task)

Product:
Enterprise Information Security Graveyard
Component:
MIG
Platform:
x86_64
Linux
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: jvehent, Assigned: jvehent)

References

Details

Compliance checks need to run daily. However, signing actions currently requires access to GPG private keys that only investigators have. Thus, compliance checks need to be launched daily by an investigator.

MIG needs a way to launch recurring actions without requiring human interventions, and without compromising the security model. Recurring actions need to be derived from master actions that are signed by an investigator. Designed a secure and practical way to do so is the purpose of this bug.
Assignee: nobody → jvehent
Component: Operations Security (OpSec): General → Operations Security (OpSec): MIG
Group: mozilla-employee-confidential
Component: Operations Security (OpSec): MIG → MIG
Product: mozilla.org → Enterprise Information Security
Version: other → unspecified
Group: mozilla-employee-confidential
:alm wrote a mig-runner client that automates the scheduling of recurring actions. We'll use that moving forward.
https://github.com/mozilla/mig/pull/86
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → FIXED
Product: Enterprise Information Security → Enterprise Information Security Graveyard
You need to log in before you can comment on or make changes to this bug.