You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@accumulo.apache.org by "Sean Busbey (JIRA)" <ji...@apache.org> on 2014/10/30 14:20:33 UTC
[jira] [Updated] (ACCUMULO-3277) Document vulnerability reporting
[ https://issues.apache.org/jira/browse/ACCUMULO-3277?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Sean Busbey updated ACCUMULO-3277:
----------------------------------
Summary: Document vulnerability reporting (was: Create security issue page)
> Document vulnerability reporting
> --------------------------------
>
> Key: ACCUMULO-3277
> URL: https://issues.apache.org/jira/browse/ACCUMULO-3277
> Project: Accumulo
> Issue Type: Task
> Components: docs
> Reporter: Sean Busbey
> Priority: Critical
> Labels: website
>
> We currently have neither a security disclosure page nor instructions on how people should report vulnerabilities to us.
> security@apache.org will already use our private@accumulo list for forwarding issues to us. Presuming we don't want to create security@accumulo, we should advertise that private@ is the preferred way for others to contact us.
> in addition to a dedicate page, a reference on the mailing lists page would be a good idea (since it's the closest thing we have to a 'contact us' page).
> ref: [ASF guide|http://www.apache.org/security/committers.html]
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)