View Issue Details

IDProjectCategoryView StatusLast Update
0000564Main CAcert Websitewebsite contentpublic2013-01-15 02:36
ReporterC_A Assigned ToSourcerer  
Status closedResolutionfixed 
Fixed in Version2009 Q2 
Summary0000564: security contact information
DescriptionProvide informations on how to contact CAcert for security issues in CAcert software

  * email address
    * PGP/GPG public key (signed by 65D0FD58)
    * X.509 public key

Reference: (my request on cacert-support)
TagsNo tags attached.
Reviewed by
Test Instructions



2008-06-28 16:58

reporter   ~0001105

GPG is not much supported currently.

X509 has the email in the root certificates.


2008-06-30 17:26

reporter   ~0001108

Do you suggest that I should encrypt emails to with the public part of the root key? (that wouldn't make much sense to me)


2008-06-30 17:46

reporter   ~0001109

Anyone can send a clear text message to then get a signed email back in order to cipher the data.


2008-06-30 18:06

reporter   ~0001110

I never got a _signed_ message from, I will try to get one.

thank you for the hint


2009-04-09 13:36

administrator   ~0001351

I added a paragrah about reporting security issues:
Please review and close the bug.

Issue History

Date Modified Username Field Change
2008-06-08 15:44 C_A New Issue
2008-06-28 16:58 homer Note Added: 0001105
2008-06-30 17:26 C_A Note Added: 0001108
2008-06-30 17:46 homer Note Added: 0001109
2008-06-30 18:06 C_A Note Added: 0001110
2009-04-09 13:36 Sourcerer Note Added: 0001351
2009-04-09 13:36 Sourcerer Status new => solved?
2009-04-26 14:43 Sourcerer Status solved? => closed
2009-04-26 14:43 Sourcerer Resolution open => fixed
2009-04-26 14:43 Sourcerer Assigned To => Sourcerer
2013-01-15 02:36 Werner Dworak Fixed in Version => 2009 Q2