[
https://issues.apache.org/jira/browse/HBASE-7126?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14354285#comment-14354285
]
Sean Busbey commented on HBASE-7126:
------------------------------------
a link to the ASF policy on reported vulnerabilities would be a nice addition
(ref http://apache.org/security/), perhaps with a note that folks who wish to
send an encrypted report can use the GPG details provided for the general ASF
security list (with a warning that responses will take longer).
> Update website with info on how to report security bugs
> --------------------------------------------------------
>
> Key: HBASE-7126
> URL: https://issues.apache.org/jira/browse/HBASE-7126
> Project: HBase
> Issue Type: Task
> Components: documentation
> Reporter: Eli Collins
> Assignee: Misty Stanley-Jones
> Priority: Critical
> Labels: website
> Attachments: HBASE-7126.patch
>
>
> The HBase website should be updated with information on how to report
> potential security vulnerabilities. In Hadoop land we have a private security
> list that anyone case post to that we point to on our list page: Hadoop
> example http://hadoop.apache.org/general_lists.html#Security.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
