Uploaded image for project: 'Qt Quality Assurance Infrastructure'
  1. Qt Quality Assurance Infrastructure
  2. QTQAINFRA-367

Move Gerrit to HTTPS only

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • P1: Critical
    • 2012q2
    • 2011q4
    • Gerrit
    • RC\-V2.2.1-INT-016

    Description

      This is a follow up from QTQAINFRA-167 – the whole codereview must be moved to HTTPS only, since it's a security risk. A malicious user could sniff the cookies/authentication headers, steal the IP address, and act as an Approver (thus pushing arbitrary code into Qt).

      Attachments

        Issue Links

          relates to

          Suggestion - Public suggestions QTQAINFRA-357 Gerrit should be publically, anonymously accessible

          • P1: Critical - Urgent and Important, will STOP the release if matched with set FixVersion field. This includes regressions from the last version that are not edge cases; Data loss; Build issues; All but the most unlikely crashes/lockups/hanging; Serious usability issues and embarrassing bugs & Bugs critical to a deliverable. This is the highest possible priority for requirements.
          • Closed

          Activity

            People

              seahumad [BB] Sergio Ahumada (Inactive)
              peppe Giuseppe D'Angelo
              Votes:
              6 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: