[Bug 158715] Periodically call home to check for need for update due to security vulnerability
bugzilla-daemon at bugs.documentfoundation.org
bugzilla-daemon at bugs.documentfoundation.org
Fri Dec 15 21:05:26 UTC 2023
https://bugs.documentfoundation.org/show_bug.cgi?id=158715
V Stuart Foote <vsfoote at libreoffice.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |vsfoote at libreoffice.org
See Also| |https://bugs.documentfounda
| |tion.org/show_bug.cgi?id=68
| |274
--- Comment #16 from V Stuart Foote <vsfoote at libreoffice.org> ---
As noted comment 5 and comment 7, the major Windows user bases will be the
primary beneficiaries of Stephen B.'s work to revisit and fully implement the
initial Mozilla MAR work of bug 68274
UX-design may need to decide on UI and default/opt-out methods for incremental
updates delivered via MAR. Which could end up fully cross platform, at least
for the TDF distributed builds.
As Eyal suggested, security notification on 'call home' using the current
"update available" methods is feasible and could be as simple as flagging those
releases that patch published security vulnerabilities.
But distro maintainers, and packaged installers (Flatpack, PortableApps, snap,
AppImage) are responsible for their own bundling. If they strip out/disable
the "update available" methods the "call home" alerts will fail. Not LOs or TDF
decision.
Best project can do is improve notification/alerts in the TDF and App store
builds and make the process appealing for the other packaging to use.
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the Libreoffice-ux-advise
mailing list