search

matomo-org / matomo

Empowering People Ethically with the leading open source alternative to Google Analytics that gives you full control over your data. Matomo lets you easily collect data from websites & apps and visualise this data and extract insights. Privacy is built-in. Liberating Web Analytics. Star us on Github? +1. And we love Pull Requests!
https://matomo.org/
GNU General Public License v3.0
19.89k stars 2.65k forks source link

Create a Secure Mode that removes some features from Piwik to increase security #6348

Open mattab opened 10 years ago

mattab commented 10 years ago

A Super User has a lot of power and with it comes a lot of responsibility. The goal of this issue is to create a new config setting eg. secure_mode that is disabled by default. When enabled it will limit some of the powers of Super Users.

In particular it will prevent:

Possibly there are other insecure items that a Super User could do that we want to limit in the secure mode?

randy-innocraft commented 3 months ago

Hi @mattab. Thank you for creating the issue and bringing this to our attention, that's very appreciated. We have reviewed and triaged this ticket internally. Our team will prioritise this, and we will update you on the progress here when we have an update to share. If you have any further information or questions, please feel free to add them here.