Re: Method of Contact - Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



    (1) >   * The proposed mechanism for reporting a vulnerability.

Be as accepting as possible.  Standard email and a web form could both feed into an autoresponder/ticket system.

>    It seems like a web-based reporting system may also provide a better level of security protection by encrypting the channel & contents of the communication vs. less secure email.

Yeah, TLS is good.

    (2) >  * What the email address should be for reports to be sent to.

No opinion.





[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Mhonarc]     [Fedora Users]

  Powered by Linux