-
For e2e integration testing of Security on
by default we need a special infrastructure
to support following scenarios:
- Single Node installation:
. archive: we will need to validate that durin…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues and found none that matched mine
### Describe the issue
I can successfully login and set a local password. In our …
-
Description
===========
While load testing a microservice that uses a kafka producer, I noticed that the service uses rather high memory allocations.
When profiling the service, the following was d…
-
The PaperCut-SMTP software is being detected as an open SMTP relay by our security scanning software, doesn't appear to be a way to secure the connection with a username/password. Can an option be ad…
-
### Bitwarden Beta
- [X] I'm using the new native Bitwarden Beta app and I'm aware that legacy .NET app bugs should be reported in [bitwarden/mobile](https://github.com/bitwarden/mobile)
### Ste…
-
The sign-up form currently accepts passwords of any length, including very short ones, and does not enforce the use of special characters or capital letters. This lack of password policy leads to weak…
-
## Prevent login CSRF
## Prevent usage of stolen password reset token
Do this by storing a second token in the browser which initiated the password reset flow. This token + the email token makes u…
-
```
The quick start design on first run is great, but I'd really like at least an
option to encrypt the hostname and privatekey files with a password on disk
with a prompt for the password when the …
-
### Is your feature request related to a problem ?
Multiple people have gotten confused by the default password set by kube-prometheus-stack (https://github.com/prometheus-operator/kube-prometheus/is…
-
### Description
Often we come across requirements to prevent users from reusing 6 (or some other number) of their previous passwords upon resetting their password.
We've looked into this practic…