Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum
Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Feature Requests
  3. Security.txt in APP Konfigurator

Security.txt in APP Konfigurator

Scheduled Pinned Locked Moved Feature Requests
5 Posts 3 Posters 349 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • S Offline
    S Offline
    savity
    wrote on Oct 31, 2024, 9:06 AM last edited by savity Oct 31, 2024, 9:07 AM
    #1

    Hi Everyone,

    since security.txt is a https://www.rfc-editor.org/rfc/rfc9116 is there a way to get this done for my APPs?
    We are able to modify robots.txt but it would be awesome to do this for security.txt
    BR Savity

    1 Reply Last reply
    6
    • N Offline
      N Offline
      nebulon
      Staff
      wrote on Oct 31, 2024, 9:39 AM last edited by
      #2

      Not sure I fully understand the RFC there, but this sounds more like the app itself should ship such a file so researchers discovering a security issue can contact the app authors to let them know?

      1 Reply Last reply
      2
      • S Offline
        S Offline
        savity
        wrote on Oct 31, 2024, 1:56 PM last edited by
        #3

        The goal is to provide a way for individuals and teams to report any vulnerabilities found on the website or in the application. For example, this can be set up similarly to the following pages:

        https://www.brz.gv.at/security.txt
        https://www.bsi.bund.de/security.txt

        This approach allows for flexibility in addressing vulnerabilities; they do not always need to be limited to the application side alone.

        1 Reply Last reply
        0
        • N Offline
          N Offline
          nebulon
          Staff
          wrote on Oct 31, 2024, 2:26 PM last edited by
          #4

          I guess we can add this in the app configure section if there is some interest.
          Some more context is at https://securitytxt.org/

          1 Reply Last reply
          7
          • J Offline
            J Offline
            johannesjom
            wrote on Feb 16, 2025, 1:54 PM last edited by
            #5

            That would be a very cool feature!

            1 Reply Last reply
            1
            Reply
            • Reply as topic
            Log in to reply
            • Oldest to Newest
            • Newest to Oldest
            • Most Votes

            • Login
            • Don't have an account? Register
            • Login or register to search.
            • First post
              Last post
            0
            • Categories
            • Recent
            • Tags
            • Popular
            • Bookmarks
            • Search