PGP key for vulnerability reports

Mark Doliner mark at
Thu Jan 9 10:36:06 EST 2014

On Thu, Jan 9, 2014 at 6:50 AM, Ethan Blanton <elb at> wrote:
> Richard Johnson spake unto us the following wisdom:
>> Hello, it has been a month since our last correspondence. We would like to
>> move forward with the process of fixing these bugs and making our snort
>> signatures public. We also have not had any feedback on the other three
>> bugs. Please let us know if we can help and a plan of action.
> I asked Tomasz for his hit on these bugs.  Does anyone else have
> comments?  Where are we for a 2.x.y, can we just commit to pushing one
> out in a week or two?  I know there are several people with pending
> fixes in the private repo...

I'm planning on spending a lot of time this weekend looking at all our
security emails and reviewing/fixing/changlogging/prepping/whatever to
try to release a 2.x.y soon.

More information about the security mailing list