-
Every operation that consumes nontrivial server resources should have a configurable limit or rate limit. Some that we're missing:
1. There's no rate limit for guessing account passwords (which has…
-
Version https://github.com/mautrix/signal/commit/45f97de8db3f44537ec40544f57b0c4cd786f2ee
Compiling myself, maybe relates, maybe not, but new error or warning apart the old suggestions:
```
warni…
-
`gke/ERR/2021_001` is checking if GKE node service accounts have a role binding for `roles/logging.logWriter`, `gke/ERR/2021_002` is doing the same for `roles/monitoring.metricWriter`. The referenced …
-
```
[2297/38437] clang++ -MD -MF obj/third_party/perfetto/src/tracing/client_api_without_backends/track_event_internal.o.d -DUSE_UDEV -DUSE_AURA=1 -DUSE_GLIB=1 -DUSE_OZONE=1 -DOFFICIAL_BUILD -D__STDC…
-
Hello,
I am wondering if an security hardening guide or a checklist exists for gunicorn?
For example something like [this](https://www.cisecurity.org/benchmark/apache_tomcat/) would be super usefu…
-
We defined as set of standards for SCS compatible K8S certificate v1 in https://github.com/SovereignCloudStack/standards/issues/615 and want check, if these standard apply to k8s implementation with […
-
Have a local firewall, limited capabilities, virtual env around docker on the host, non-root user inside Docker, and many more security enforcement to be able to use Exegol in sensitive contexts, limi…
-
Part of the 1.0 milestone https://github.com/hyperledger/firefly/issues/117 includes a number of performance tests on FireFly core.
They are:
- Throughput and latency measurement
- Bottleneck an…
-
The security and privacy aspects of this project could be improved in several fronts:
1) Enable optional resource limits intended for the processing of untrusted documents.
2) Identify potential…
-
Besides #1, it would be good to investigate other measures that can/should be taken to make running Docker containers on shared systems more secure.