Security.txt
From Just Solve the File Format Problem
(Difference between revisions)
(Created page with "{{FormatInfo |formattype=electronic |subcat=Web |extensions={{ext|txt}} }} '''Security.txt''' is a proposed standard way for website owners to provide security-related informa...") |
|||
Line 14: | Line 14: | ||
* [https://www.ietf.org/id/draft-foudil-securitytxt-00.txt RFC draft 2017-09-10] | * [https://www.ietf.org/id/draft-foudil-securitytxt-00.txt RFC draft 2017-09-10] | ||
+ | [[Category:Security]] | ||
[[Category:File formats with a distinctive filename]] | [[Category:File formats with a distinctive filename]] |
Revision as of 16:58, 22 September 2017
Security.txt is a proposed standard way for website owners to provide security-related information (e.g. how to report vulnerabilities) to security researchers and other third parties.
It is similar in concept, and in format, to robots.txt.
To use it, the website administrator creates a document at /.well-known/security.txt
. The full URL would be something like http://example.com/.well-known/security.txt
. (The "/.well-known/
" component of the URL is from RFC 5785.)