mirror of
https://github.com/acepanel/panel.git
synced 2026-02-05 05:47:17 +08:00
26 lines
1.9 KiB
Markdown
26 lines
1.9 KiB
Markdown
## 安全说明
|
||
|
||
安全性是我们最关心的问题之一,我们已在多个不同应用的生产环境广泛应用耗子面板,至今无一例安全事故。
|
||
|
||
耗子面板采用业界多种方案尽可能保证面板的安全性,但是我们不能保证面板的绝对安全性,**因此我们不对面板的安全性做任何保证**。
|
||
|
||
如果您在使用面板的过程中发现任何安全问题,请勿提交 Issue,可通过以下方式直接联系我们:
|
||
|
||
- 邮箱:admin@haozi.net
|
||
- QQ:826896000
|
||
|
||
致某些 CVE 爱好者:通过面板 `session` / `access_token` 执行的任何操作(包括且不限于:获取 root 权限、读取/写入系统敏感文件、执行任意 shell 命令等)均不被认为是安全问题,请不要刷此类报告浪费彼此的时间,这类低水平的报告对你的简历也没有任何帮助。
|
||
|
||
## Security Policy
|
||
|
||
Security is one of our biggest concerns. We have widely used Rat Panel in production environments for many different applications, and there has been no safety incident so far.
|
||
|
||
Rat Panel adopts various solutions in the industry to ensure the security of the panel as much as possible, but we cannot guarantee the absolute security of the panel, **therefore we do not make any guarantees on the security of the panel**.
|
||
|
||
If you find any security issues while using the panel, please do not submit an Issue. You can contact us directly through the following methods:
|
||
|
||
- Email: admin@haozi.net
|
||
- Telegram: @devhaozi
|
||
|
||
To some CVE enthusiasts: Any operation performed through the panel `session` / `access_token` (including but not limited to: obtaining root permissions, reading/writing system sensitive files, executing arbitrary shell commands, etc.) is not considered a security issue, please Don’t waste each other’s time with these types of reports. These low-level reports won’t do anything to help your resume.
|