From e519c5a4fc51d4e8eb24514b082a45d2ec25e4b5 Mon Sep 17 00:00:00 2001 From: Andrew Lytvynov Date: Mon, 31 Jul 2023 15:56:08 -0700 Subject: [PATCH] incident-{disclosure,response}: small wording updates (#13) Post-merge suggestions from https://github.com/tailscale/security-policies/pull/12#pullrequestreview-1552757484 --- incident-disclosure/index.md | 2 +- incident-response/index.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/incident-disclosure/index.md b/incident-disclosure/index.md index 723baee..08329a7 100644 --- a/incident-disclosure/index.md +++ b/incident-disclosure/index.md @@ -35,4 +35,4 @@ To disclose security vulnerabilities, Tailscale publishes security bulletins pub To notify users about security vulnerabilities, Tailscale will **email** affected tailnets’ administrators, with information specific to the tailnet, including specific users or nodes which are affected. These emails will be sent to the [security contact](https://tailscale.com/kb/1224/contact-preferences/#setting-the-security-issues-email) for the tailnet, which by default is the Owner of the tailnet. -Occasionally, Tailscale may decide to notify users in additional ways about a security issue, such as by publishing a [blog post](https://tailscale.com/blog/), or with in-product notifications by putting a warning banner in the admin console. +Occasionally, Tailscale may decide to notify users in additional ways about a security issue, such as by publishing a [blog post](https://tailscale.com/blog/), or with in-product notifications (such as by putting a warning banner in the admin console). diff --git a/incident-response/index.md b/incident-response/index.md index ce0a51e..21426f1 100644 --- a/incident-response/index.md +++ b/incident-response/index.md @@ -26,7 +26,7 @@ All employees should watch for potentially suspicious activities, including: * Modification or defacement of websites * New open network ports on a system -Tailscale regularly reviews logs for detecting and tracking attempted intrusions and other suspicious activity. These include git, cloud, networking, SaaS tool, and other infrastructure logs. +Tailscale regularly reviews logs to detect and track attempted intrusions and other suspicious activity. These include git, cloud, networking, SaaS tool, and other infrastructure logs. The Security Review Team: