My preference is to keep the content as it is now, or create a security.html page: this page should contain the official CVEs (similarly to what we have now) and not suggestions, or how-to guides to keep the system secure (but we could add a link to this content, that should stay in the Wiki)
Jacopo On Mon, Oct 31, 2016 at 2:27 PM, Jacques Le Roux < [email protected]> wrote: > Hi, > > We now have an entry at https://www.apache.org/security/projects.html > It points to [email protected] > > We could create a specific page in wiki > > I thought about a combination of https://cwiki.apache.org/confl > uence/display/OFBIZ/Keeping+OFBiz+secure and > > We could add the content of http://ofbiz.apache.org/downlo > ad.html#vulnerabilities in this page and redirect from > http://ofbiz.apache.org/download.html to https://cwiki.apache.org/confl > uence/display/OFBIZ/Keeping+OFBiz+secure > > What do you think? > > Jacques > >
