A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Contact: mailto:koos+website@idefix.net Encryption: openpgp4fpr:979BCF89EBBF9AC96A14F56A5BA9368BE6F334E4 Encryption: https://idefix.net/~koos/PGP-key-koos-2016.asc -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEchjCCQ/j5W3qeuMLOxfJq+SjyRYFAlzy7DgACgkQOxfJq+Sj yRacbA/+IgqlaBbDU2/LP0hkF+1II9CKO+TW654iLtSGtGjiGN5zBW2pe7bcK5fO rI1aPBA7bfqzRiOnmB4lswWRZqo787pNVE0OsCGiFZybKOjtRuSqBAKqan+EXZpm Dvc23qikgKpF/tNXeEX4tpl4d4Ns39qscUlI4RtVmS6Aa9kWu+PEY/IPi71/JuR/ nwdcHrUtzrdC9ua7lnd4m6fuX7+xCXpuplSaTAwIPH15855vNqkMchBvG+nW0Pym 8aOxxbmTAOxBDH72ez5v3D2LOgGhDINdKCBual3r/3hh0UMgc/cP4ZI5kncIfH83 ThH8ulULQYrwMwkOx1ggMYKtHukNx87XIWRjlI9R0t0dK1Tk4rFd86v7/hEun0MQ b0E5C0dbBmavleIcS6f9neJ+I+NcpMz34FcA2olue8i0709hUKwbZ9I3e4Ml6LYw HMsO/ANtB31R7oCoYa1pYQMaJyeC/84b66rE63jOjIP8PT6OeZ58TIp6BWydYxh9 Mpr/54KYBnAyZfkUpqEp0gSK4mUKIfP7jTsazZoWBsDulnHIqlUFCvytUQnZ9Fr3 /7JoA37AWXKhlhl9yiUEGVVnm9uJ6TtteJSOyYMYWDNWrTB3kP/1kH2QR5qQvIz8 wL3kFyX07tYXXF0po4lVnrhKSpqiOPrYYUaHogCVqC1aoOGo0TY= =Bg5+ -----END PGP SIGNATURE-----
This policy crawled by Onyphe on the 2021-03-03 is sorted as securitytxt.
FireBounty © 2015-2024