Closed Bug 731044 Opened 14 years ago Closed 14 years ago

Enable SecureMail for "Security-Sensitive Core Bug" group bugs

Categories

(bugzilla.mozilla.org :: Extensions, defect)

Product:
bugzilla.mozilla.org
Component:
Extensions
Version:
Production
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: abillings, Assigned: glob)

References

Details

We should enable SecureMail for "Security-Sensitive Core Bug" group bugs in order to protect ourselves from accidental information disclosures as part of defense in depth. This also avoids us transmitting and storing security bug information in the clear on third party mail servers, such as Gmail.
I'd like us to circulate this idea with everyone that will be impacted since it will cripple search functionality.
Sure, opening the bug was just the first step in order to begin the process.
Keep in mind the existing bug 729558, which can cause unreadable bugmail.
Yep, we should fix 729558 first. However, that doesn't stop us having the discussion. However, a bug is not a great place for discussing whether or not to do something (it's better for discussing _how_ to do it, which is not a question here - it's a simple check of a box). Mailing lists are better for that. Al: perhaps it would be good to start the discussion on security-group@mozilla.org? Gerv
(Ah, I see Dan has notified s-g. I'll try and encourage people to talk about it there.) Gerv
Based on discussions, there does not seem to be anything blocking us turning this on now.
I only see one somewhat "blocking" issue here, and that's getting a wiki, MDC or similar page up that describes in detail how you set up both Bugzilla and e.g. Thunderbird with a cert from e.g. StartSSL, possibly even EnigMail with a GPG key (and how to get a reasonable GPG key in the first place). That's not a technical requirement, obviously, just a documentation one.
I don't think we need to block on documentation. Even if people set up nothing, they still get a notification that the bug as changed. Perhaps we can do a security blog post that will go to planet to notify people why this occurred and then see about docs.
"need" is maybe -- maybe -- too strong. But I think as a matter of courtesy the change should be announced, with pointers to how to respond, prior to its actually occurring. I know I'd be frustrated if this change were to happen before I could adapt to it. If there's no particular reason that courtesy must be sacrificed to immediacy here (and I'm aware of nothing beyond belt-and-suspenders here), I think we should have those docs and a short lead time before the actual change.
This has been talked about at length on security-group now. There is a wiki page for guidance at https://wiki.mozilla.org/Security/Security_Bugs/EncryptedBugmail. We can turn SecureMail on for "Security-Sensitive Core Bug" group bugs now.
secure-mail has been enabled for the core-security group.
Assignee: nobody → glob
Status: NEW → RESOLVED
Closed: 14 years ago
Resolution: --- → FIXED
Depends on: 741996
Component: Extensions: SecureMail → Extensions
You need to log in before you can comment on or make changes to this bug.