vu3rdd
commented
3 years ago I am wondering if this is out of scope as far as the current audit is concerned. Blox has a desktop app and perhaps this should live as part of that desktop app documentation?
Open jehadbaeth opened 3 years ago
vu3rdd
commented
3 years ago I am wondering if this is out of scope as far as the current audit is concerned. Blox has a desktop app and perhaps this should live as part of that desktop app documentation?
Needs more investigation
I'm still looking at how blox is handling seal tokens. here's my line of thoughts:
Do they need to use a different way of sealing/unsealing the vault? i.e.
if they are going to use a token or a user/pass how should it be stored? an external 3rd party encrypted password manager would work or do they need a more convenient way for rapid access??