https://bugzilla.novell.com/show_bug.cgi?id=661361 https://bugzilla.novell.com/show_bug.cgi?id=661361#c5 --- Comment #5 from Scott Couston <scott@aphofis.com> 2011-03-18 07:11:43 UTC --- Created an attachment (id=420112) --> (http://bugzilla.novell.com/attachment.cgi?id=420112) 1 of 8 Pics Thank you! Yes there is so much greater ease in locating members - I was beginning to feel lonely until I found the other 4 members in .AU - Last time I looked there were only 4 Members it total for Australia - (Same geographical size as the USA). There are a few bugs for localised installation of the software that make the finished installation a nightmare and an unusable system - Not having control over a brand new installation puts the software out in the cold. Its a pretty good bet that this issue keeps users away in their thousands...but Hey what would I know - I'm just a tech living in the Southern Hemisphere and in a market that is not worth worrying about. Yes I have requested the issue be removed/changed from install but twice it was closed as WONTFIX after many a passionate dialogue. The change would not effect anyone but it remains the number 1 reason why people chuck it out after an install never to return. Much has changed user-wise/login-wise with all the changes to WIKI/SITE/SDB/....etc. I can see that my Novell and WIKI login accounts are replicated between Novell and OpenSUSE WIKI-Site but there is an interesting hitch. There is a litany of bugs with user account login and user rights errors all over the whole project! Not to mention OpenFate cannot offer delete user rights and only offers rename. We need to put 'rename' onto the users dashboard and once done email audit the case for actual deletion. Without this auto email audit for deleting, searching will only get to be more of a nightmare. I can be logged into Novell>Bugzilla and then need to login to WIKI...You can see the screen shot of me logged out of WIKI but remaining logged into Novell>Bugzilla.
From a portal users are offered read only without even a login - however once logged into users rights restrict deletion or change or rename.Being logged into Novell does NOT give login righs nor login session at all with anything else.
My screen shots are attached - This needs retesting WITHOUT anything whatsoever in both password cache and site exceptions to test this properly. I would also suggest that as soon as ANY login attempt is made from ANYTHING that traffic should auto change to HTTPS - atm we just use a popup login window from the existing HTTP page - The exception is a Novell Login page. Yes this is an issue from new WIKI and a horrible one to work around - New WIKI come with a security pedigree and we all know its a nightmare but.... I would suggest there is only one way to fix all of above, offer flexibility, offers secure login's, reduce reliance on very complex user rights, remove the maintenance of parental rights having to be changed by maximum rights masks and policies, and maintain security without horrendous maintenance tasks. I dont think its too late to use and issue Novell-SuseLinux-OpenSUSE....etc Client/Server issued SSL certificates as well as using existing Security Tokens defaults from VeriSign or issuing Novell Security Tokens for the first time... As a PostScript, Issuing Client/Server certificates is easy and flexible and offer a far easier security that - We issue PGP for all Repositories without distressing any users right now and implementing client Server SSL Certificates should be painless. If implemented now before WIKI grows to be unmanageable in size requires careful thought Fire Fox has abysmal handling of auto renew Security Certificates/Token Objects however existing security authorities are easily utilised and flexible. Fire Fox is hopeless in its ability to update defaults, renew expired dates and the ability to tolerate both the absence of Validation and Revocation Server in its PKCS#11 Suite. Turning OFF both validation and revocation is absurd. I should of staying in Canada skiing :-) [BTW -We have a huge memory leak with large graphics and extended clipboard sizes.] -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.