View Issue Details

IDProjectCategoryView StatusLast Update
0006983Kali Linux[All Projects] Kali Websites & Docspublic2021-01-10 14:04
Reporterkali-bugreport Assigned To 
PrioritynormalSeverityminorReproducibilityhave not tried
Status newResolutionopen 
Product Version 
Target VersionFixed in Version 
Summary0006983: Permission problems in Kali bugtracker
DescriptionHaven't found any better fitting category so had chosen "Kali Websites & Docs".

I have noticed that you seems to have some permission problems in this bug tracker for the standard "Reporter" account.

For example reporters can "Clone" an issue like happen in e.g. 0006912 (clone of 0006903) or 0006960 / 0006962 (clone 0006907) plus many additional ones, i don't think that such "Reporters" should have the possibility to Clone existing issues.

In addition e.g. "Reporters" can report an issue in the "Queued Tool Addition" category like seen in 0006981:0014079, this probably should be prevented by setting stricter permissions to that category.

On the other hand there are too strict permissions and reporters can't even edit their own comments / issues and also can't close them on their own.

Activities

kali-bugreport

2021-01-10 14:04

reporter   ~0014093

TLDR;

Suggestions for the permissions of the "Reporter" level:

- Disallow "Clone" functionality
- Disallow creating issues in the "Queued Tool Addition" category
- Allow editing the own issues / comments
- Allow closing the own issues

Issue History

Date Modified Username Field Change
2021-01-10 11:27 kali-bugreport New Issue
2021-01-10 14:04 kali-bugreport Note Added: 0014093