[Fwd: Bugmail is less secure than Bug views]
bugzilla at glob.com.au
Tue Jun 12 14:04:52 UTC 2007
> This is an email forwarded with permission from the Mozilla security
> group mailing list, on the subject of the fact that Bugzilla access is
> now SSL-protected, but bugmail is still transmitted in the clear.
i recon we should implement this as a bugzilla plugin -- pass the
message to an external handler after it has been packaged in mime for
modification, then deliver the modified content.
it can then use whatever's appropiate to sign the message .. call
openssl, pgp, .net, ...
begin-base64 644 signature.gif
More information about the developers