Security.txt
From Just Solve the File Format Problem
(Difference between revisions)
(Created page with "{{FormatInfo |formattype=electronic |subcat=Web |extensions={{ext|txt}} }} '''Security.txt''' is a proposed standard way for website owners to provide security-related informa...") |
(→Links) |
||
| (One intermediate revision by one user not shown) | |||
| Line 11: | Line 11: | ||
== Links == | == Links == | ||
| + | * [https://securitytxt.org/ security.txt website] | ||
* [https://github.com/EdOverflow/security-txt GitHub project] | * [https://github.com/EdOverflow/security-txt GitHub project] | ||
* [https://www.ietf.org/id/draft-foudil-securitytxt-00.txt RFC draft 2017-09-10] | * [https://www.ietf.org/id/draft-foudil-securitytxt-00.txt RFC draft 2017-09-10] | ||
| + | [[Category:Security]] | ||
[[Category:File formats with a distinctive filename]] | [[Category:File formats with a distinctive filename]] | ||
Latest revision as of 16:52, 10 November 2017
Security.txt is a proposed standard way for website owners to provide security-related information (e.g. how to report vulnerabilities) to security researchers and other third parties.
It is similar in concept, and in format, to robots.txt.
To use it, the website administrator creates a document at /.well-known/security.txt. The full URL would be something like http://example.com/.well-known/security.txt. (The "/.well-known/" component of the URL is from RFC 5785.)
