diff options
| author | Nick Kralevich <nnk@google.com> | 2013-11-20 12:59:08 -0800 |
|---|---|---|
| committer | Nick Kralevich <nnk@google.com> | 2013-11-20 13:13:50 -0800 |
| commit | ac237236ca6e6a2f25309a5b7ad9856034a99915 (patch) | |
| tree | 2f1d8959ddae829b788cae47832b1d7b7911facc | |
| parent | a5153f0cd5ee9b82fa732b9c2d1700ed2dd5acb4 (diff) | |
| download | frameworks_base-ac237236ca6e6a2f25309a5b7ad9856034a99915.zip frameworks_base-ac237236ca6e6a2f25309a5b7ad9856034a99915.tar.gz frameworks_base-ac237236ca6e6a2f25309a5b7ad9856034a99915.tar.bz2 | |
Add OEM specific addresses
Add OEM specific security addresses to the Android Security FAQ.
It's a partial list for now, but we'll build this up over time.
Delete the security@android.com hyperlink. I think people are
accidentally clicking on the link, causing empty e-mails to
get sent to us.
Change-Id: If516a15169bd79f45d5aa3bef2b0bd2c6af8f0fa
| -rw-r--r-- | docs/html/guide/faq/security.jd | 15 |
1 files changed, 11 insertions, 4 deletions
diff --git a/docs/html/guide/faq/security.jd b/docs/html/guide/faq/security.jd index 96fc7f5..784d2aa 100644 --- a/docs/html/guide/faq/security.jd +++ b/docs/html/guide/faq/security.jd @@ -47,8 +47,7 @@ quickly and professionally to vulnerability reports from external researchers. <a name="issue" id="issue"></a><h2>I think I found a security flaw. How do I report it?</h2> -<p>You can reach the Android security team at <a -href="mailto:security@android.com">security@android.com</a>. If you like, you +<p>You can reach the Android security team at security@android.com. If you like, you can protect your message using our <a href="http://code.google.com/android/security_at_android_dot_com.txt">PGP key</a>.</p> @@ -58,6 +57,14 @@ with a detailed summary of the issue and keeping the issue confidential while users are at risk. In return, we will make sure to keep the researcher informed of our progress in issuing a fix. </p> +<p>Vulnerabilities specific to Android OEMs should be reported to the relevant +vendor. An incomplete list of Android vendor security contacts can be found below. +To be added to this list, please contact security@android.com. + +<ul> + <li><a href="http://www.htc.com/www/terms/product-security/">HTC</a><li> + <li><a href="http://www.motorolasolutions.com/US-EN/About/Security%20Vulnerability">Motorola</a><li> +</ul> <a name="informed" id="informed"></a><h2>How can I stay informed about Android security?</h2> @@ -91,8 +98,8 @@ distributed for Android. How can I help?</h2> <p>Like any other platform, it will be possible for unethical developers to create malicious software, known as <a href="http://en.wikipedia.org/wiki/Malware">malware</a>, for Android. If you -think somebody is trying to spread malware, please let us know at <a -href="mailto:security@android.com">security@android.com</a>. Please include as +think somebody is trying to spread malware, please let us know at +security@android.com. Please include as much detail about the application as possible, with the location it is being distributed from and why you suspect it of being malicious software.</p> |