security advisory
Andrew Alexeev
andrew at nginx.com
Thu Mar 15 13:46:36 UTC 2012
Antonio,
On Mar 15, 2012, at 5:04 PM, Antonio P.P. Almeida wrote:
> 2. Get a CVE identifier.
>
> 3. Publish it also on security lists like full-disclosure and bugtraq,
> for example
>
> I know that Nginx has been a labour of love of a few people until recently.
> But now that you're an established company I think that having in place a
> more formal procedure for security advisories would bring great benefits
> to Nginx as a free software project with its community and as a company
> also.
>
> Just my unsolicited $.02
Thanks, this had been planned and now ongoing.
> Salutations distinguées,
>
> António
More information about the nginx
mailing list