Set up security.txt file
Set up security.txt file
Per RFC 9116 there should be a security.txt
file on a web server to aid in security vulnerability disclosure. This needs to be completed.
Steps to complete
Several servers exist that could support this, therefore several items need to be completed
-
Design the main security.txt
file for deployment viahttps://<web service>/.well-known/security.txt
-
Deploy on the main nmrc.org
server. -
Deploy on cryptonomicon.us
. -
Deploy on blackhole.nmrc.org
(GitLab instance, this is a supported "feature"). -
Deploy on rigor-mortis.nmrc.org
(this may require a bit of research).
Edited by Simple Nomad