Hi Benjamin, Thanks, on https://oauth.net/security/ they referred to this mailing list but it doesn't seem smart to just blast it around in a public mailing list. I'll follow the description from your link.
Thanks & Regards, Rutger On Sat, Aug 28, 2021 at 8:22 PM Benjamin Kaduk <[email protected]> wrote: > On Sat, Aug 28, 2021 at 03:56:51PM +0200, Rutger Hertogh wrote: > > Hi all, > > > > How can I report a possible security threat? > > The answer depends on whether it's believed to be an issue with the > protocol itself vs a specific implementation or implementations of it. > > The IETF guidance on reporting protocol vunlerabilities (the former > category) is available at > https://www.ietf.org/standards/rfcs/vulnerabilities/ > > -Ben On Sat, Aug 28, 2021 at 8:22 PM Benjamin Kaduk <[email protected]> wrote: > On Sat, Aug 28, 2021 at 03:56:51PM +0200, Rutger Hertogh wrote: > > Hi all, > > > > How can I report a possible security threat? > > The answer depends on whether it's believed to be an issue with the > protocol itself vs a specific implementation or implementations of it. > > The IETF guidance on reporting protocol vunlerabilities (the former > category) is available at > https://www.ietf.org/standards/rfcs/vulnerabilities/ > > -Ben >
_______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
