View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0001874 | 10000-007: Profiles | public | 2012-02-10 17:48 | 2012-03-02 17:08 | |
| Reporter | Jim Luth | Assigned To | Paul Hunkar | ||
| Priority | normal | Severity | major | Reproducibility | always |
| Status | closed | Resolution | fixed | ||
| Product Version | 1.01 | ||||
| Fixed in Version | 1.02 | ||||
| Summary | 0001874: Secure by default | ||||
| Description | The current (1.02 draft) makes it clear that anonymous user access must be disabled by default. We need to add a similar requirement for application level security, i.e. Security Policy NONE must not be allowed by default (if other security policies are supported). | ||||
| Tags | No tags attached. | ||||
| Commit Version | |||||
| Fix Due Date | |||||
|
|
Added text to indicate that this security policy should be disable by default if any other security policies are available |
|
|
Reviewed and agreed in telecon. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2012-02-10 17:48 | Jim Luth | New Issue | |
| 2012-02-13 09:48 | Paul Hunkar | Status | new => assigned |
| 2012-02-13 09:48 | Paul Hunkar | Assigned To | => Paul Hunkar |
| 2012-03-02 08:53 | Paul Hunkar | Status | assigned => resolved |
| 2012-03-02 08:53 | Paul Hunkar | Resolution | open => fixed |
| 2012-03-02 08:53 | Paul Hunkar | Note Added: 0003344 | |
| 2012-03-02 17:08 | Jim Luth | Status | resolved => closed |
| 2012-03-02 17:08 | Jim Luth | Note Added: 0003345 | |
| 2012-03-02 17:08 | Jim Luth | Fixed in Version | => 1.02 |
