Social engineering attack -> no best practices in crypto on website: how to contact website team to solve that? (no immediately exploitable vulnerability, but practical in future in some circumstances)

glb · August 22, 2024, 2:32pm

It all sounds reasonable to me. I’d say just open some issues (or MRs) at fedora / Fedora Websites and Apps / Fedora Websites / fedora-websites-3.0 · GitLab once you’ve worked out a better system and the Websites and Apps team will review the ideas and implement them if they seem reasonable. Thanks.

Topic		Replies	Views
Fedora verification process Ask Fedora installation , security , gpg	13	737	February 3, 2025
Security and Usability Issues of Clear Signed Checksum Files Project Discussion engineering , security-sig	22	266	August 22, 2024
Can ISOs downloaded from Fedora's official website contain malicious ISO image? Ask Fedora	15	529	March 19, 2023
Checksum for Fedora41 fails with "17 lines incorrectly formatted" everytime Ask Fedora	2	734	November 5, 2024
Comment about Fedora security and unsigned repository metadata Ask Fedora security	7	131	November 20, 2024