Can anyone explain the rationale behind commit 7a18b250b07ff4ed0c34fa48e69029c114ec3ab1? I do not have access to the BZ that it references.
I don't see the security implications of generating a diff for a non-world-readable file. Unauthorized users can't read the file on the system and you need to have access to the system in Spacewalk to view the output. Is there another scenario that makes returning the diff insecure? /aron _______________________________________________ Spacewalk-devel mailing list Spacewalk-devel@redhat.com https://www.redhat.com/mailman/listinfo/spacewalk-devel