Re: Summary of BTS evaluations
[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index] [Thread Index]
On Fri, Jul 19, 2002 at 10:19:21AM -0500, John Goerzen wrote:
> ROUNDUP
> Pros:
> * Written in Python and has a Python API
> * Quick install for a default configuration
> * Looks reasonably secure
> * Has a nice e-mail interface built-in
> * Nice way of parsing e-mail attachments and making them into bug
> attachments
> Cons:
> * Making changes to the config requires editing cryptic text files or even
> deleting all info in the database and restarting
> * Not a lot of flexibility in the security part. Either people can
> do everything or they can do nothing.
The way I see it is that if you allow email to change bug status, security
is moot anyway unless you require GPG signatures. I can *easily* forge email
messages that pretend to come from someone else without signatures.
Also, I understand the auditor/detector mechanism allows for some
flexibility here.
> * Interface is kinda ugly
But the templates are flexible; just redefine the colours, right?
--
Martijn Pieters
| Software Engineer mailto:mj@xxxxxxxx
| Zope Corporation http://www.zope.com/
| Creators of Zope http://www.zope.org/
---------------------------------------------
|
|
