If you think a bug might affect users in the 57 release, please set the correct tracking and status flags for Release Management.

Status

Enterprise Information Security
MIG
RESOLVED FIXED
3 years ago
2 years ago

People

(Reporter: ulfr, Assigned: ulfr)

Tracking

Details

(Assignee)

Description

3 years ago
Compliance checks need to run daily. However, signing actions currently requires access to GPG private keys that only investigators have. Thus, compliance checks need to be launched daily by an investigator.

MIG needs a way to launch recurring actions without requiring human interventions, and without compromising the security model. Recurring actions need to be derived from master actions that are signed by an investigator. Designed a secure and practical way to do so is the purpose of this bug.
Assignee: nobody → jvehent
(Assignee)

Updated

3 years ago
Blocks: 1107108
(Assignee)

Updated

3 years ago
No longer blocks: 1107108
(Assignee)

Updated

3 years ago
Component: Operations Security (OpSec): General → Operations Security (OpSec): MIG
Group: mozilla-employee-confidential
Component: Operations Security (OpSec): MIG → MIG
Product: mozilla.org → Enterprise Information Security
Version: other → unspecified
(Assignee)

Updated

2 years ago
Group: mozilla-employee-confidential
(Assignee)

Comment 1

2 years ago
:alm wrote a mig-runner client that automates the scheduling of recurring actions. We'll use that moving forward.
https://github.com/mozilla/mig/pull/86
Status: NEW → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.