Closed Bug 803257 Opened 13 years ago Closed 13 years ago

shouldn't be able to overwrite release artifacts on ftp

Tracking

(Not tracked)

Status:

RESOLVED DUPLICATE of bug 737812

People

(Reporter: bhearsum, Unassigned)

Details

bhearsum@mozilla.com (:bhearsum)

Reporter

Description

•

13 years ago

bug 800338 talks about an issue where overwriting files on FTP unknowingly caused problems with updates, and a panic about a potential intrusion into our systems. If we hadn't been able to overwrite files, the issue never would've happened.

Rail Aliiev [:rail]

Comment 1

•

13 years ago

Sounds like a dup of bug 737812.

Status: NEW → RESOLVED

Closed: 13 years ago

Resolution: --- → DUPLICATE

bhearsum@mozilla.com (:bhearsum)

Reporter

Comment 2

•

13 years ago

If that's the implementation we want for now, yeah. Long term I think we may want a write-once blob store or some other protection enforced at a lower level (eg, a level that can't be bypassed without root access).

Nobody; OK to take it and work on it

Assignee

Updated

•

12 years ago

Product: mozilla.org → Release Engineering

You need to log in before you can comment on or make changes to this bug.

Bugzilla

shouldn't be able to overwrite release artifacts on ftp

Categories

(Release Engineering :: Release Automation, defect)

Tracking

(Not tracked)

People

(Reporter: bhearsum, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Description

Comment 1

Comment 2

Updated