Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: Review Request: phpBB - A php Bulletin Board https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=191968 ------- Additional Comments From tibbs@xxxxxxxxxxx 2006-05-16 14:42 EST ------- Damn mid-air collisions..... I don't really understand why Peter gave up on the original review request; phpBB is commonly used and I fully agree with Mike that having automated updates coming from a trusted source should be far better for overall security than requiring every single admin to watch for updates and manually apply them. I do think that this should be blocked until the current minor issues open on 2.0.20 are closed. (There's a full path disclosure and I think one other issue that I can't recall at the moment.) My real concern is for the feasibility of doing automated upgrades. I look after a small phpBB setup and while the procedure for me is simple because I don't run any mods, it's never as simple as just replacing the files. How is that going to be handled by the package? If we're going to put this into extras, we can't be afraid to push updates quickly and admins need to trust that those updates will work (else they'll just not update the package at all). -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA contact for the bug, or are watching the QA contact. _______________________________________________ Fedora-package-review mailing list Fedora-package-review@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-package-review