VRP: Suggest to use PGP encrypted email over plain text email

This commit is contained in:
Leon Klingele 2018-01-19 20:03:43 +01:00
parent ba54b38fe6
commit cb2a030c86
No known key found for this signature in database
GPG key ID: 83AEC0FEBAA5D483

View file

@ -52,7 +52,7 @@ PGP key fingerprint = 1218 6272 CD48 E253 9E2D D29B 66A7 6ECF 9144 09F1
## III. Incident response ## III. Incident response
1. Researcher submits report via one or both of two methods: 1. Researcher submits report via one or both of two methods:
- a. Email - a. PGP encrypted Email (use the appropriate fingerprints [listed in section I](#i-points-of-contact-for-security-issues) or as included in the Monero repo in `utils/gpg_keys/`)
- b. [HackerOne](https://hackerone.com/monero) - b. [HackerOne](https://hackerone.com/monero)
2. Response Team designates a Response Manager who is in charge of the particular report based on availability and/or knowledge-set 2. Response Team designates a Response Manager who is in charge of the particular report based on availability and/or knowledge-set