[
https://issues.apache.org/jira/browse/HBASE-7126?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14190049#comment-14190049
]
Sean Busbey commented on HBASE-7126:
------------------------------------
More info in the [ASF ref|http://www.apache.org/security/committers.html].
[email protected] will default to private@hbase for forwarding reports to
them. That's fine if we want to stick to usign that for all reports, but we
should document the preference.
> Update website with info on how to report security bugs
> --------------------------------------------------------
>
> Key: HBASE-7126
> URL: https://issues.apache.org/jira/browse/HBASE-7126
> Project: HBase
> Issue Type: Task
> Components: documentation
> Reporter: Eli Collins
> Priority: Critical
> Labels: website
>
> The HBase website should be updated with information on how to report
> potential security vulnerabilities. In Hadoop land we have a private security
> list that anyone case post to that we point to on our list page: Hadoop
> example http://hadoop.apache.org/general_lists.html#Security.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
