[tor-bugs] #34036 [Internal Services/Services Admin Team]: audit access permissions in rt.torproject.org
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Apr 28 00:21:09 UTC 2020
#34036: audit access permissions in rt.torproject.org
-------------------------------------------------+-------------------------
Reporter: anarcat | Owner: (none)
Type: task | Status: new
Priority: High | Milestone:
Component: Internal Services/Services | Version:
Admin Team |
Severity: Major | Keywords:
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
-------------------------------------------------+-------------------------
there are a lot of users in rt, some of which probably do not belong
there:
https://rt.torproject.org/Admin/Users/
we need to perform an audit of who has access to RT, to which queue and
clean all that up.
ideally, users shouldn't be granted individual access to stuff and only be
part of groups which, in turn, have the required accesses.
users should also be added/removed properly as part of the
onboarding/offboarding procedures, but that's a question for #32519. for
now, this ticket is just about playing catchup.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/34036>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list