|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [Predisclosure-applications] Application for NetBSD
Hello,
Appended are the answers to your questions from:
http://www.xenproject.org/security-policy.html
Please consider including us in your pre-disclosure emails.
Best Regards,
Christos Zoulas, Secretary
---------------------------------------------------------------------------
- The name of your organization
The NetBSD Foundation, LLC.
- Domain name(s) which you use to provide Xen software/services
NetBSD.org
- A brief description of why you fit the criteria
1. NetBSD was one of the first Open Source operating systems ported
to XEN. We offer both dom0 and domU support, and we have been
doing that for many years
2. pkgsrc is the portable third party software packaging system
used by NetBSD and others to manage third-party software,
including Xen. It is available on 23 different platforms
- If not all of your products/services use Xen, a list of (some of)
your products/services (or categories thereof) which do.
N/A, The NetBSD Operating System. The pkgsrc third-party packaging system
- Link(s) to current public web pages, belonging to your organisation,
for each of following pieces of information:
http://www.netbsd.org/
http://www.pkgsrc.org/
o Evidence of your status as a service/software provider:
* If you are a public hosting provider, your public rates or
how to get a quote
N/A
* If you are a software provider, how your software can be
downloaded or purchased
ftp://ftp.netbsd.orig/pub/NetBSD/
http://ftp.netbsd.org/pub/NetBSD/
* If you are an open-source project, a mailing list archive and/or
version control repository, with active development
anoncvs@xxxxxxxxxxxxxxxxxx:/cvsroot
http://mail-index.netbsd.org
o Evidence of your status as a user/distributor of Xen:
* Statements about, or descriptions of, your eligible production
services or released software, from which it is immediately
evident that they use Xen.
http://wiki.netbsd.org/ports/xen/
o Information about your handling of security problems:
* Your invitation to members of the public, who discover security
problems with your products/services, to report them in confidence
to you;
http://www.netbsd.org/support/security/
* Specifically, the contact information (email addresses or other
contact instructions) which such a member of the public should use.
security-alert@xxxxxxxxxx
Blog postings, conference presentations, social media pages, Flash
presentations, videos, sites which require registration, anything
password-protected, etc., are not acceptable. PDFs of reasonable
size are acceptable so long as the URL you provide is of a ordinary
HTML page providing a link to the PDF.
N/A
If the pages are long and/or PDFs are involved, your email should say
which part of the pages and documents are relevant.
N/A
- A statement to the effect that you have read this policy and agree to
abide by the terms for inclusion in the list, specifically the requirements
to regarding confidentiality during an embargo period
I have read the security policy and I will abide by the terms
for inclusion in the list, specifically the requirements
regarding confidentiality during an embargo period
- The single (non-personal) email alias you wish added to the predisclosure
list.
security-alert@xxxxxxxxxx
_______________________________________________
Predisclosure-applications mailing list
Predisclosure-applications@xxxxxxxxxxxxxxxxxxxx
http://lists.xenproject.org/cgi-bin/mailman/listinfo/predisclosure-applications
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |