-
**Beskrivelse**
Når vi går public med infrastrukturkoden blottlegger vi en stor angrepsflate. Ved å legge alt vi kan av infrastruktur inn i VNet sikrer vi oss mot mange typer angrep. Den eneste tilgan…
-
The documentation should stress that **cryptographically random keys must be used** with the library. For example, advise users to run something like the following to create a new key:
```
node -e "c…
veeti updated
8 years ago
-
# Fail2Ban setup
- [ ] [~Wordpress jail setup~
](https://www.digitalocean.com/community/tutorials/how-to-protect-wordpress-with-fail2ban-on-ubuntu-14-04)
- [x] Secure wp-login page:
- [Guide 1…
-
## CVE-2021-38153 - Medium Severity Vulnerability
Vulnerable Library - kafka-clients-2.4.0.jar
Library home page: https://kafka.apache.org
Path to dependency file: /server/plugins/kafka-event-sink/…
-
Just have a "can't submit 2 runs within X seconds" restriction for now. The free quota on GAE could get exhausted if one user spams the site with a ton of runs.
-
### What
Additional security and login options.
- [RFC 6238](https://tools.ietf.org/html/rfc6238) TOTP - TOTP stands for Time-based One-Time Passwords and is a common form of two factor authentic…
-
#### Issue
As an administrator I can set a password with special characters. Some of these special characters lead to an invalid password. In consequence a user cannot log in to SuiteCRM. The followi…
-
It's visible in issue #365 that CPU usage can be quite high with some password hashing algorithms involved in user auth validation. Given that such use cases generally see the same login+password repe…
-
### Issue Summary
Rohit reported another security issue:
----
Target URL: https://app.formbricks.com/auth/forgot-password
Vulnerability Type: User Email Enumeration
Severity: Medium
De…
-
Hi, I am making some experiments with firehol an a NAT1:1 configuration. Specifically, I am trying to protect the ssh server from brute force attacks.
Without NAT, things appear to work fine with:
…