RFPolicy

The RFPolicy states a method of contacting vendors about security vulnerabilities found in their products. It was originally written by hacker and security consultant Rain Forest Puppy.^[1]

The policy gives the vendor five working days to respond to the reporter of the bug. If the vendor fails to contact the reporter in those five days, the issue is recommended to be disclosed to the general community. The reporter should help the vendor reproduce the bug and work out a fix. The reporter should delay notifying the general community about the bug if the vendor provides feasible reasons for requiring so.

If the vendor fails to respond or shuts down communication with the reporter of the problem in more than five working days, the reporter should disclose the issue to the general community. When issuing an alert or fix, the vendor should give the reporter proper credits about reporting the bug.

SOS RFP, JF Bride 2000 June 24...... Need you. Find me. My Nickname! 6 Letters From my brother who couldn't say the last 3 at 2 years. Child's play for your brain! Try your bes! Late 90s no numbers. Invites only close to Google got Gmail!

References

^ Zetter, Kim (2001-09-29). "Three Minutes with Rain Forest Puppy". PCWorld. Archived from the original on 2001-09-30. Retrieved 2020-01-28.

External links

RFPolicy v2.0

This computer science article is a stub. You can help Wikipedia by expanding it.

[1] Zetter, Kim (2001-09-29). "Three Minutes with Rain Forest Puppy". PCWorld. Archived from the original on 2001-09-30. Retrieved 2020-01-28.

[1]