On 29/05/18 01:35 AM, Per Jessen wrote:
As far as I have understood, the list is meant as an interface - you want access to a private bug report, write to the list and ask. The report could be made public or you could be given the info you need.
Or not. (See Kafka) Or you might be refused. (See Kafka again) Or, just as with governments, you might get a reply that has everything even slightly relevant redacted. (But this being SUSE you can expect that, unlike the governmental redaction, you won't be able to peer 'under' the PDF overlay layer to see the original.) There is no guarantee and there is just to much hand-waving going on. An unstated NDA allows the matter of 'security' to be invoked to justify just about anything, just as it can justify crippling US industry by increasing the cost of essential raw material or shafting the bulk (100 -9.9)% of US consumers by taxing imported cars and components in the name of security. There's places where security is essential, but security isn't just about 'privacy'. It's also about Integrity and Availability. https://security.blogoverflow.com/2012/08/confidentiality-integrity-availabi... Actually I agree with Donn Parker that Availability without Utility is meaningless and in this case I'd argue that the issue is not about privacy as much as it is about Possession & Control. -- Never try to reason the prejudice out of a man. It was not reasoned into him, and cannot be reasoned out. Sydney Smith -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org