cacert-sysadm AT lists.cacert.org
Subject: CAcert System Admins discussion list
List archive
- From: Mario Lipinski <mario AT cacert.org>
- To: cacert-sysadm AT lists.cacert.org
- Cc: Ian G <iang AT cacert.org>, Cacert List SE <cacert-se AT lists.cacert.org>
- Subject: Re: questions from the board on OTRS
- Date: Sat, 27 Feb 2010 15:33:27 +0100
- Authentication-results: lists.cacert.org; dkim=pass (1024-bit key) header.i= AT cacert.org; dkim-asp=none
- Organization: CAcert Events, CAcert Organisation Assurance Germany
Hi,
Am 22.02.10 23:24, schrieb Ian G:
Board has asked us to comment on the following questions concerning
OTRS, the issue tracking system used by Support:
* Is it compliant with SP / SM?
I think not. For example there is not dual control. But is OTRS covered by SP at all?
* where is the workflow?
Undocumented I think.
* should the OTRS be a critical system?
Maybe. But then we should think about mail first. Maybe we even need to do some more seperation then just betweens critical/infrastructure.
* should Triage people be fully under Security Policy?
Imho yes.
* where is the description of the system and its security?
There is a wiki page. But still WiP.
http://wiki.cacert.org/SystemAdministration/Systems/Issue
* who are the people who control access to the system?
See wiki page. But maybe incomplete.
Mario
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
- questions from the board on OTRS, Ian G, 02/22/2010
- Re: questions from the board on OTRS, Ian G, 02/23/2010
- Re: questions from the board on OTRS, Daniel Black, 02/23/2010
- Re: questions from the board on OTRS, Mario Lipinski, 02/27/2010
- RE: [cacert-se] Re: questions from the board on OTRS, ulrich, 02/27/2010
- Re: [cacert-se] RE: Re: questions from the board on OTRS, Ian G, 02/28/2010
- RE: [cacert-se] Re: questions from the board on OTRS, ulrich, 02/27/2010
- Re: questions from the board on OTRS, Ian G, 02/23/2010
Archive powered by MHonArc 2.6.16.