SiT! Bugs - SiT!
View Issue Details
0001805SiT!securitypublic2012-09-28 11:282013-07-13 13:14
ivan 
ivan 
normalmajorhave not tried
assignedopen 
3.65 LTS 
 
0001805: BCC email address stored in log
When sending email the BCC email address is stored in log

To: test@example.com
From: test@example.com
Reply To: test@example.com
BCC: test@example.com
Subject: [48196] - Testing
No tags attached.
child of 0001887confirmed  [META] Store more metadata about updates on incidents 
Issue History
2012-09-28 11:28ivanNew Issue
2012-09-28 11:28ivanStatusnew => assigned
2012-09-28 11:28ivanAssigned To => ivan
2012-10-06 13:40TomseNote Added: 0004538
2012-11-03 13:37paulhNote Added: 0004569
2013-02-03 15:56paulhNote Added: 0004689
2013-07-13 13:14paulhRelationship addedchild of 0001887

Notes
(0004538)
Tomse   
2012-10-06 13:40   
The log you're refering to is the incident log (not related to debug_log)
(0004569)
paulh   
2012-11-03 13:37   
I think, for audit purposes, we need to retain this information as we need to know its been sent though I think it should be hidden from the portal as we don't want the customer seeing this
(0004689)
paulh   
2013-02-03 15:56   
The problem here is not that we are storing the bcc (which we need for audit) but that if the email is marked as visible in the portal customers can see the data which is wrong, we should separate the headers into a separate field