Bugzilla:FAQ:Bugzilla Security

Revision as of 08:10, 17 March 2006 by Victory (talk | contribs) (Bugzilla:FAQ 4. Bugzilla Security)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

General Questions

Managerial Questions

Administrative Questions

Bugzilla Security

How do I completely disable MySQL security if it's giving me problems? (I've followed the instructions in the installation section of this guide...)

Run MySQL like this: mysqld --skip-grant-tables. Please remember that this makes MySQL as secure as taping a $100 to the floor of a football stadium bathroom for safekeeping.

  1. This can't be stressed enough. Doing this is a bad idea. Please consult

Section 4.2 of this guide and the MySQL documentation for better solutions.

Are there any security problems with Bugzilla?

The Bugzilla code has undergone a reasonably complete security audit, and user-facing CGIs run under Perl's taint mode. However, it is recommended that you closely examine permissions on your Bugzilla installation, and follow the recommended security guidelines found in The Bugzilla Guide.

Bugzilla Email

Bugzilla Database

Bugzilla and Win32

Bugzilla Usage

Bugzilla Hacking