Researching and reporting potential security vulnerabilities in the 10pow6 LLC family of sites.

10pow6 LLC deeply cares about the security of both our network and our customers, and actively supports the larger security community. 10pow6 LLC is committed to independent security research and responsible disclosure.

The following guidelines apply to researching and reporting potential security vulnerabilities in our network.

Security evaluations must:

• Be performed only on 10pow6 LLC domains
• Not be performed on any non-10pow6 LLC domain
• Not compromise the availability of 10pow6 LLC's services
• Not compromise the security or privacy of 10pow6 LLC's customers or the data on 10pow6 LLC's network
• Use non-destructive and non-disruptive testing
• Not involve social engineering or evaluation of physical security controls

Findings of security evaluations must be reported via our contact form with the subject, "Potential Security Vulnerability." The support ticket must provide as much detail as is known, including:

• Valid contact information for the reporter
• A description of the location and nature of the vulnerability
• Detailed steps to reproduce the vulnerability
• A short description of the vulnerability’s potential security impact

10pow6 LLC's response to reports of security evaluations

10pow6 LLC will:

• Endeavor to acknowledge initial security evaluation reports as quickly as possible
• Prioritize the reproduction and then confirmation of any reported vulnerability
• For any confirmed vulnerability, promptly identify a reasonable timeline for patching and public disclosure
• Provide recognition on this page should you choose to be listed
• Not pursue legal action against any reporter who complies with all of the guidelines for performing and reporting security evaluations, and who also cooperates fully with 10pow6 LLC's reasonable requests for assistance in reproducing a vulnerability

Please note that security tests or research which interfere with or disrupt the integrity or performance of the Services violate our acceptable use policy. You must respond immediately to any communications from 10pow6 LLC regarding your work to help ensure your activities do not adversely affect other customers or the 10pow6 LLC network.