When enacting upon the above security issues I noticed that the processes for security concerns could be improved. Details of how to report a sensitive security issue can now be found in the [project readme](https://github.com/BookStackApp/BookStack/tree/master#security).
-For the purpose of notifying admins on security issues, A new mailing list has been created which you can [subscribe to here](http://eepurl.com/glIh8z).
+For the purpose of notifying admins on security issues, A new mailing list has been created which you can [subscribe to here](https://updates.bookstackapp.com/signup/bookstack-security-updates).
### Translations
Read through the below to ensure you have secured your BookStack instance. Note, The below only
relates to BookStack itself. The security of the server BookStack is hosted on is not instructed below but should be taken into account.
-If you'd like to be notified of new potential security concerns you can sign-up to the [BookStack security mailing list](http://eepurl.com/glIh8z). For reporting security vulnerabilities, please see the ["Security" section](https://github.com/BookStackApp/BookStack/blob/master/readme.md#-security) of the project readme on GitHub.
+If you'd like to be notified of new potential security concerns you can sign-up to the [BookStack security mailing list](https://updates.bookstackapp.com/signup/bookstack-security-updates). For reporting security vulnerabilities, please see the ["Security" section](https://github.com/BookStackApp/BookStack/blob/master/readme.md#-security) of the project readme on GitHub.
<ul>
{{.Content}}
<div class="footer-content">
- {{ partial "mailchimp.html" . }}
+ {{ partial "signup.html" . }}
<div class="text-muted">
Want to let me know what you think of BookStack or this post? <br>
+++ /dev/null
-<!-- Begin MailChimp Signup Form -->
-
-<div id="mc_embed_signup">
- <form action="https://bookstackapp.us14.list-manage.com/subscribe/post?u=18917f477406e2be3f062086a&id=7de4fb0c79" method="post" id="mc-embedded-subscribe-form" name="mc-embedded-subscribe-form" class="validate" target="_blank" novalidate>
- <h4>Subscribe to Updates</h4>
- <p>This is a weekly newsletter, summarising content from the blog.</p>
- <div class="mc-field-group">
- <input placeholder="Email address" type="email" value="" name="EMAIL" class="required email" id="mce-EMAIL">
- <button class="button">Subscribe</button>
- </div>
- <div id="mce-responses" class="clear">
- <div class="response" id="mce-error-response" style="display:none"></div>
- <div class="response" id="mce-success-response" style="display:none"></div>
- </div> <!-- real people should not fill this in and expect good things - do not remove this or risk form bot signups-->
- <div style="position: absolute; left: -5000px;" aria-hidden="true"><input type="text" name="b_18917f477406e2be3f062086a_7de4fb0c79" tabindex="-1" value=""></div>
- <p class="text-small">This service uses MailChimp to manage sending emails so any information provided will go into their systems. Feel free to review their <a href="https://mailchimp.com/legal/privacy" target="_blank">Privacy Policy</a> and <a href="https://mailchimp.com/legal/terms" target="_blank">Terms</a>. You'll be able to opt-out via a link in the email whenever you want. If you don't trust MailChimp or any BookStack maintainers with the data you provide or emit then please don't sign up.</p>
- <p class="text-small">A security-specific mailing list <a href="http://eepurl.com/glIh8z" target="_blank">can be found here</a>.</p>
- </form>
-</div>
\ No newline at end of file
--- /dev/null
+<!-- Begin MailChimp Signup Form -->
+
+<div id="mc_embed_signup">
+ <h4>Subscribe to Updates</h4>
+ <p>
+ There are two lists you can sign-up to for updates, A general news and updates list sent on a weekly basis and a security alerts list
+ that's sent when new security updates are available.
+ </p>
+ <p>
+ <a href="https://updates.bookstackapp.com/signup/bookstack-news-and-updates" target="_blank">News and Updates</a>
+ <br>
+ <a href="https://updates.bookstackapp.com/signup/bookstack-security-updates" target="_blank">Security Alerts</a>
+ </p>
+</div>
\ No newline at end of file
projects / website / commitdiff