https://bugzilla.novell.com/show_bug.cgi?id=855532
https://bugzilla.novell.com/show_bug.cgi?id=855532#c1
Lars Vogdt changed:
What |Removed |Added
----------------------------------------------------------------------------
Priority|P5 - None |P4 - Low
Status|NEW |CLOSED
CC| |lrupp@suse.com
Found By|--- |Community User
Resolution| |FIXED
--- Comment #1 from Lars Vogdt 2013-12-23 15:33:35 CET ---
Thanks for the analysis of the problem!
I added the Require valid-user line now together with a small explanation for
the user to uncomment the lines to secure the installation.
As upstream let's nconf "unsecured" per default (as the output is just placed
in /srv/www/nconf/output/ this should not be a real problem) and I can not make
a real estimate which authentication method the enduser is using, I like to
leave the lines commented out for now. I hope this also makes sense in your
eyes.
Updated package containing the fix should be available in the Build Service
repository soon. Closing here as fixed.
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.