Security/Security Bugs/EncryptedBugmail

Secure Mail will soon by turned on for bugs in the "Security-Sensitive Core Bug" group. This group includes all reported client security issues that are not web related. Specifically, this is for general platform, Javascript engine, Firefox, and Thunderbird code.

https://bugzilla.mozilla.org/page.cgi?id=securemail/help.html http://www.madboa.com/geek/gpg-quickstart/

Frequently Asked Questions (FAQ)

1. Why are we making this change?

2. How can I upload a Public Key?

Load your Secure Mail preferences tab for Bugzilla. This tab has a textarea where you can enter your PGP/GPG public key or SMIME certificate.

3. What if I take no action?

If you do not upload a encryption key and there is an update to a bug in a secure group, you will receive a notification that the bug has changed when it is updated but no details of the change. In order to view the details, you will need to visit the provided link in the e-mail to see the bug on Bugzilla.

Additionally, without uploading a key, you will not be able to reset your Bugzilla password over e-mail since the mail cannot be encrypted. You will require the assistance of an administrator for password resets.

4. I don't want to see these emails anymore, how do I turn them off?

You can change your preferences for when you wish Bugzilla to send you mail in your Email Preferences tab for your Bugzilla preferences. This contains a variety of settings for when Bugzilla should send you email and for the components you are watching.