hbase-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Sean Busbey (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HBASE-7126) Update website with info on how to report security bugs
Date Thu, 30 Oct 2014 13:26:34 GMT

    [ https://issues.apache.org/jira/browse/HBASE-7126?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14190049#comment-14190049
] 

Sean Busbey commented on HBASE-7126:
------------------------------------

More info in the [ASF ref|http://www.apache.org/security/committers.html].

security@apache.org will default to private@hbase for forwarding reports to them. That's fine
if we want to stick to usign that for all reports, but we should document the preference.

> Update website with info on how to report security bugs 
> --------------------------------------------------------
>
>                 Key: HBASE-7126
>                 URL: https://issues.apache.org/jira/browse/HBASE-7126
>             Project: HBase
>          Issue Type: Task
>          Components: documentation
>            Reporter: Eli Collins
>            Priority: Critical
>              Labels: website
>
> The HBase website should be updated with information on how to report potential security
vulnerabilities. In Hadoop land we have a private security list that anyone case post to that
we point to on our list page: Hadoop example http://hadoop.apache.org/general_lists.html#Security.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message