You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@accumulo.apache.org by "Sean Busbey (JIRA)" <ji...@apache.org> on 2014/10/30 14:20:33 UTC

[jira] [Updated] (ACCUMULO-3277) Document vulnerability reporting

     [ https://issues.apache.org/jira/browse/ACCUMULO-3277?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Sean Busbey updated ACCUMULO-3277:
----------------------------------
    Summary: Document vulnerability reporting  (was: Create security issue page)

> Document vulnerability reporting
> --------------------------------
>
>                 Key: ACCUMULO-3277
>                 URL: https://issues.apache.org/jira/browse/ACCUMULO-3277
>             Project: Accumulo
>          Issue Type: Task
>          Components: docs
>            Reporter: Sean Busbey
>            Priority: Critical
>              Labels: website
>
> We currently have neither a security disclosure page nor instructions on how people should report vulnerabilities to us.
> security@apache.org will already use our private@accumulo list for forwarding issues to us. Presuming we don't want to create security@accumulo, we should advertise that private@ is the preferred way for others to contact us.
> in addition to a dedicate page, a reference on the mailing lists page would be a good idea (since it's the closest thing we have to a 'contact us' page).
> ref: [ASF guide|http://www.apache.org/security/committers.html]



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)