View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0001874 | 10000-007: Profiles | public | 2012-02-10 17:48 | 2012-03-02 17:08 | |
Reporter | Jim Luth | Assigned To | Paul Hunkar | ||
Priority | normal | Severity | major | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Product Version | 1.01 | ||||
Fixed in Version | 1.02 | ||||
Summary | 0001874: Secure by default | ||||
Description | The current (1.02 draft) makes it clear that anonymous user access must be disabled by default. We need to add a similar requirement for application level security, i.e. Security Policy NONE must not be allowed by default (if other security policies are supported). | ||||
Tags | No tags attached. | ||||
Commit Version | |||||
Fix Due Date | |||||
|
Added text to indicate that this security policy should be disable by default if any other security policies are available |
|
Reviewed and agreed in telecon. |
Date Modified | Username | Field | Change |
---|---|---|---|
2012-02-10 17:48 | Jim Luth | New Issue | |
2012-02-13 09:48 | Paul Hunkar | Status | new => assigned |
2012-02-13 09:48 | Paul Hunkar | Assigned To | => Paul Hunkar |
2012-03-02 08:53 | Paul Hunkar | Status | assigned => resolved |
2012-03-02 08:53 | Paul Hunkar | Resolution | open => fixed |
2012-03-02 08:53 | Paul Hunkar | Note Added: 0003344 | |
2012-03-02 17:08 | Jim Luth | Status | resolved => closed |
2012-03-02 17:08 | Jim Luth | Note Added: 0003345 | |
2012-03-02 17:08 | Jim Luth | Fixed in Version | => 1.02 |