OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

cacao-comment message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Comments on Security Playbooks Version 1.0 csd01

In preparing the files for publication, we noted some issues which the TC may wish to correct in future publications:

- Several blocks of text in A.2.1 and A.3.2 are hyperlinked to the invalid address "https://datastore/getactivethreats". There is no visible indication of the presence of these hyperlinks in the document. In the published HTML format,Âthere are 75 separate occurrences of links to "https://datastore/getactivethreats". Since the example text in these appendixes is presented as plain text (JSON), it does not seem correct to embed hyperlinks within this text. It is somewhat alarming to find these "hidden" links, since they could potentially represent a security threat to readers of the document.

- (probably minor) TheÂURIs listed in Appendix C "IANA Considerations" for some OASIS resources should use "https" instead of "http". (At least two use http)

Best regards,
Paul
--
OASIS - Advancing open standards for the information society

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]