I'd be happy to review the scan results, feel free to send them to me. I'll share it with the rest of the team as well. Thanks! -Dannon On Mar 19, 2011, at 11:37 AM, Paul, Rohit (NIH/NCI) [C] wrote:
We recently ran a Nessus vulnerability scan against our server that hosts a local installation of Galaxy. The scan report showed that the web application is vulnerable to XSS and HTML injection attacks. In order to determine if/when these vulnerabilities will be fixed, where should I either send or post the scan results?
-Rohit
___________________________________________________________ Please keep all replies on the list by using "reply all" in your mail client. To manage your subscriptions to this and other Galaxy lists, please use the interface at: