An API for ssh_scan (https://github.com/mozilla/ssh_scan) and the backend API service for the Mozilla SSH Observatory (https://observatory.mozilla.org/)
31
stars
8
forks
source link
Make sure that workers are either always authenticated or always on loopback #24
With the API open without auth, it's possible to take work off the queue and put results into the DB arbitrarily.
This is not ideal, in fact, it's a potential integrity risk to the data store, so we should change that soon.