[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #25131 [Webpages/Website]: Add a security.txt file to torproject.org



#25131: Add a security.txt file to torproject.org
------------------------------+----------------------------------
 Reporter:  teor              |          Owner:  (none)
     Type:  enhancement       |         Status:  needs_revision
 Priority:  Medium            |      Milestone:  website redesign
Component:  Webpages/Website  |        Version:
 Severity:  Normal            |     Resolution:
 Keywords:                    |  Actual Points:
Parent ID:                    |         Points:
 Reviewer:                    |        Sponsor:
------------------------------+----------------------------------

Comment (by traumschule):

 (learned something: I used the already merged branch securitytxt, added
 the commit and did 'git rebase master'. So all commits got a new hash.
 Instead I need to deleted the merged branch, checkout -b securitytxt and
 add the commit there.)

 > I don't understand what the "acknowledgements" are.
 This is something the securitytxt people came up with:
 https://tools.ietf.org/html/draft-foudil-securitytxt-04#section-3.4.1
 Basically a place to honour the work of former / current security
 researchers.

 > The network team security policy is *not* the security policy for the
 whole of Tor.
 Yes, the current link does not make much sense. I propose to make up a
 (wiki?) path like [[TorSecurityPolicy]] to be filled later. It probably
 should also appear on [[WikiStart#OfficialTorLinks]].

 > The link to .well_known/security.txt is blank. Does that work?
 Got me. The whole PR was WIP and I did not expect it to be merged at this
 stage.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/25131#comment:12>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs