-
## (Put bug title here)
When changed password algorithm for tenant, the following actions/apis will timeout
* timeout on update user api:
url: `api/user/{{uuid}}`
body:
```
{
"appli…
-
1. It would be great if Steam had an option to let the window manager decorate Steam windows - and then remove the borders and window controls in the Steam skin. This is very useful, as Steam will nev…
-
I'm just going to leave this here, all as one "issue" even though it is a wide ranging criticism not only of the paper, but of the underlying architecture. Which is actually one of the most serious pr…
-
In https://github.com/Mailu/Mailu/pull/647 the default scheme was switched to BCRYPT. The argumentation was:
> bcrypt is fast¹ and secure[...]
While it's actually secure, bcypt is not fast. It i…
micw updated
2 months ago
-
We should set [NetworkPolicy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) limitations on who can even access `my.proudcity.com` and any variation of `/wp-login.php`. We …
-
When I'm reading about breaches and security tips, I want to better understand the terms being used (eg credential stuffing) without leaving the context of the breach or the advice.
## Acceptance c…
-
### Which feature or improvement would you like to request?
It would be nice if it would be possible to use OAUTH2 tokens to log into the SMTP and IMAP servers.
You can find the relevant standard fo…
-
CC.AuC.HumCCC-nS.3 represents the threat of credential stuffing, i.e., trying possible passwords used by a client to access a service until the correct password is found.
The attack relies on the p…
-
### Is your feature request related to a problem? Please describe.
I do not believe an ansible module exists that can build "security log profiles". These are located at `Security --> Event Logs …
-
While triaging issue projectdiscovery/nuclei-templates#9479 I determined a template pattern that leads to checks silently failing. I have tested this against multiple default credentials checks to con…