A call for a security expert

Can you help us put together a team to deal with Etherpad Security policies and disclosure.

The teams scope will be to:

1. Create a Vulnerability disclosure policy.
2. Engage with security researchers and the wider community to discover security issues.
3. Encourage site admins to be aware of and patch security issues before disclosure.
4. Relay security issues to the developer team and promote action whilst maintaining discreetness.
5. Work with the testing team to write test specs to check for vulnerabilities.

If you are interested in getting involved drop us an email at contact@etherpad.org

Original Vulnerability Disclosure and Discovery post

Leave a comment

Your email address will not be published. Required fields are marked *


Get every new post on this blog delivered to your Inbox.

Join other followers: