On Mon, 14 Feb 2011, Greg Christopher wrote:
Is there someone contact directly about a potential security issue with
curl?
Yes! Thank you for asking.
Please send anything that might identify a security issue to curl-security at
haxx.se - which is a closed list of receivers.
We tend to try to identify and discuss security problems in private before
they go public to reduce the risk of users getting exploited somehow.
This email address and policy, and previous security reports can be found
here:
http://curl.haxx.se/docs/security.html
--
/ daniel.haxx.se
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
