Closed
Bug 1037967
Opened 10 years ago
Closed 9 years ago
[mig] recurring actions
Categories
(Enterprise Information Security Graveyard :: MIG, task)
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: jvehent, Assigned: jvehent)
References
Details
Compliance checks need to run daily. However, signing actions currently requires access to GPG private keys that only investigators have. Thus, compliance checks need to be launched daily by an investigator. MIG needs a way to launch recurring actions without requiring human interventions, and without compromising the security model. Recurring actions need to be derived from master actions that are signed by an investigator. Designed a secure and practical way to do so is the purpose of this bug.
Updated•10 years ago
|
Assignee: nobody → jvehent
Assignee | ||
Updated•9 years ago
|
Component: Operations Security (OpSec): General → Operations Security (OpSec): MIG
Group: mozilla-employee-confidential
Component: Operations Security (OpSec): MIG → MIG
Product: mozilla.org → Enterprise Information Security
Version: other → unspecified
Assignee | ||
Updated•9 years ago
|
Group: mozilla-employee-confidential
Assignee | ||
Comment 1•9 years ago
|
||
:alm wrote a mig-runner client that automates the scheduling of recurring actions. We'll use that moving forward. https://github.com/mozilla/mig/pull/86
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → FIXED
Updated•4 years ago
|
Product: Enterprise Information Security → Enterprise Information Security Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•