You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@guacamole.apache.org by "Michael Jumper (JIRA)" <ji...@apache.org> on 2017/10/23 06:33:00 UTC

[jira] [Resolved] (GUACAMOLE-311) Document procedures for reporting security-related issues

     [ https://issues.apache.org/jira/browse/GUACAMOLE-311?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Michael Jumper resolved GUACAMOLE-311.
--------------------------------------
    Resolution: Done

Resolved via the recent addition of the "Security" link to the navigation menu.

> Document procedures for reporting security-related issues
> ---------------------------------------------------------
>
>                 Key: GUACAMOLE-311
>                 URL: https://issues.apache.org/jira/browse/GUACAMOLE-311
>             Project: Guacamole
>          Issue Type: Task
>          Components: Website
>            Reporter: Michael Jumper
>            Assignee: Michael Jumper
>            Priority: Blocker
>
> The Guacamole website does not currently document the correct procedures for reporting security vulnerabilities (email the private@ list). This hasn't been an issue yet, as no such vulnerabilities have been reported, but there have been at least a couple incidents where a user believed that they found something security-related and announced this finding on the public lists.
> We need to properly document this before it becomes a problem.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)