<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html;
      charset=windows-1252">
  </head>
  <body>
    <div class="moz-cite-prefix">I am not the admin of that mailing
      list, lets wait for approval.<br>
      <br>
      On 12/7/19 8:39 PM, Regina Obe wrote:<br>
    </div>
    <blockquote type="cite"
      cite="mid:001c01d5ad2d$98df9220$ca9eb660$@pcorp.us">
      <pre class="moz-quote-pre" wrap="">Angelos,

 

Thanks.  I just put in a subscription request.  I guess it requires manual
approval since haven't gotten a response yet.

 

Thanks,

Regina

 

From: postgis-devel [<a class="moz-txt-link-freetext" href="mailto:postgis-devel-bounces@lists.osgeo.org">mailto:postgis-devel-bounces@lists.osgeo.org</a>] On Behalf
Of Angelos Tzotsos
Sent: Saturday, December 7, 2019 11:25 AM
To: PostGIS Development Discussion <a class="moz-txt-link-rfc2396E" href="mailto:postgis-devel@lists.osgeo.org"><postgis-devel@lists.osgeo.org></a>
Subject: Re: [postgis-devel] PSC Vote add a <a class="moz-txt-link-abbreviated" href="mailto:security@postgis.net">security@postgis.net</a>

 

Hi,

FYI there is <a class="moz-txt-link-abbreviated" href="mailto:security-priv@lists.osgeo.org">security-priv@lists.osgeo.org</a>
<a class="moz-txt-link-rfc2396E" href="mailto:security-priv@lists.osgeo.org"><mailto:security-priv@lists.osgeo.org></a>  where several CVE reports have been
logged.

On 12/5/19 8:34 PM, Regina Obe wrote:

Right now when any one has a security issue of a private nature they either
don't know who to send the notice to or send it to whoever they know on the
PSC.
 
 
 
I propose we have a <a class="moz-txt-link-abbreviated" href="mailto:security@postgis.net">security@postgis.net</a> <a class="moz-txt-link-rfc2396E" href="mailto:security@postgis.net"><mailto:security@postgis.net></a>
<a class="moz-txt-link-rfc2396E" href="mailto:security@postgis.net"><mailto:security@postgis.net></a> <a class="moz-txt-link-rfc2396E" href="mailto:security@postgis.net"><mailto:security@postgis.net></a>
(similar to how other projects had one)
 
 
 
And state if anyone found a security vulnerability in PostGIS  they can send
to this email.
 
 
 
Thoughts?
 
Also who want to handle security issues - can be more than one of us.
 
 
 
Thanks,
 
Regina
 
 





_______________________________________________
postgis-devel mailing list
<a class="moz-txt-link-abbreviated" href="mailto:postgis-devel@lists.osgeo.org">postgis-devel@lists.osgeo.org</a> <a class="moz-txt-link-rfc2396E" href="mailto:postgis-devel@lists.osgeo.org"><mailto:postgis-devel@lists.osgeo.org></a> 
<a class="moz-txt-link-freetext" href="https://lists.osgeo.org/mailman/listinfo/postgis-devel">https://lists.osgeo.org/mailman/listinfo/postgis-devel</a>






</pre>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <pre class="moz-quote-pre" wrap="">_______________________________________________
postgis-devel mailing list
<a class="moz-txt-link-abbreviated" href="mailto:postgis-devel@lists.osgeo.org">postgis-devel@lists.osgeo.org</a>
<a class="moz-txt-link-freetext" href="https://lists.osgeo.org/mailman/listinfo/postgis-devel">https://lists.osgeo.org/mailman/listinfo/postgis-devel</a></pre>
    </blockquote>
    <br>
    <br>
    <pre class="moz-signature" cols="72">-- 
Angelos Tzotsos, PhD
Charter Member
Open Source Geospatial Foundation
<a class="moz-txt-link-freetext" href="http://users.ntua.gr/tzotsos">http://users.ntua.gr/tzotsos</a></pre>
  </body>
</html>