Mozilla: Improving Security for Bugzilla

Interesting that the linked FAQ - a PDF document - is presumably hosted on something resembling one of those Web caching nodes one sees all over the place nowadays, judging by the lengthy hostname on some unmemorable domain in the URL. It's almost like the punchline to a bad joke. (A Dropbox URL would have been the icing on the cake.)

A few things (maybe found in the FAQ) are still left lingering. For example, is this a general Bugzilla problem or more a specific thing to Mozilla's instance (which is unhelpfully referenced as just "Bugzilla")? Free Software really needs robust bug trackers and tools, despite what the GitHub crowd may say, and projects need the confidence to keep using them. If I were still running Bugzilla instances, I'd really want to know a bit more about what to do with this news.

(I remember dealing with MediaWiki and actually getting some pretty good security-related news from that project, even though it wasn't my software of choice, and even though I later ended up just using the Red Hat packages, anyway.)