On 06.12.2013 14:34, Ralf Corsepius wrote:
On 12/06/2013 02:14 PM, Jiri Moskovcak wrote:
On 12/06/2013 02:10 PM, Ralf Corsepius wrote:
On 12/06/2013 12:14 PM, "Jóhann B. Guðmundsson" wrote:
On 12/06/2013 09:56 AM, Jakub Filak wrote:
Hello,
I'd like to add abrt-cli package to the comps group 'standard'.
The package pulls core ABRT functionality for catching C/C++ crashes,
uncaught Python exceptions, Kernel oopses and VMCore processing.
There is a bugzilla bug requesting this change:
https://bugzilla.redhat.com/show_bug.cgi?id=1025222
I'd like to hear your opinion about that.
I would say that abrt should not be installed et all unless user has
agreed to it at install time.
+1 Abort needs to remain "opt-in" (and remain fully uninstallable)
Ralf
Care to share the reason why? At least the first part..
To leave users a choice of minimizing the risks of exposing their
confidential and private data.
To me, personally, the recent incidents with abrt have qualified abrt as
not trustworthy and as a data privacy risk. I've banned it from my
machines, because I do not trust abrt anymore.
Ralf
ABRT does not send *any* information unless you agree to do it. Not even
the anonymous reports. It is true that the settings could be in Anaconda
and I think it belongs in there. But at the very moment this is not
happening, so ABRT asks you on first launch. It is not ABRT's fault that
the majority of users blindly clicks "Next, Next, Next" and enables the
automatic sending.
Additionally, if you want to prevent business information leak, do not
connect your machines directly to the Internet. This approach has been
working perfectly for many years and I don't think much has changed in
that area lately.
Michal
--
devel mailing list
devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/devel
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
