Hello,
-
I found an issue that I think might be a security risk in CIS. I tried emailing the address shown on https://www.comodo.com/ for “report security bugs” and got an automatic response that included “Your message was rejected by the recipient’s domain because the recipient’s email address isn’t listed in the domain’s directory”. If that email address is incorrect then please correct it.
-
I cannot use the “Report Security Vulnerabilities” form without including a work email address. There are people who don’t have work email addresses, and even if I do, I might not want to involve my employer in my report. Please allow non-work email addresses to send reports through that form.