Sebastian Pipping
Sebastian Pipping
If you implement auto-revocation, please make sure the old cert is revoked *after* the new one is installed and known working, and consider to have it turned off by default....
Hi! > But I'm not sure "known working" is a reachable goal Adding a hook for when a certificate has been updated (that could reload apache or so, whatever the...
So risky bind mounts are considered covered by "processes as root" in https://raw.githubusercontent.com/OWASP/Docker-Security/master/assets/threats.png as of today — is that correct?
> Does that solves your question? Yes! (So this ticket may not be as done as it appeared to me earlier.) For a direct link to page 89 if anyone...
> To reproduce: restructuredText with code directive like shown in the handbook? Probably. (It's Markdown over here.Some blocks get numbers, some don't , not sure yet why.)
For reproduction (with Bash): ```console cd "$(mktemp -d)" yes '' | nikola init f6_play >/dev/null cd f6_play/ nikola theme -i foundation6 >/dev/null sed 's,^THEME = .*,THEME = "foundation6",' -i conf.py...
> Django's built-in cache functionality fails if Pickle isn't available - e,g; `@cache_page` doesn't work with JSON serialization. If so, maybe `django-redis` could have special handling to make storage and...
Hi @terencehonles, thanks for your reply. I think back when I opened this ticket in 2019 I did not have signature guards on the radar yet. I agree that combining...
> I would prefer if this was vetted against the Django project and in that case this project would offer neither. It would consume implementations from the parent project. Do...
Has anyone had a chance yet to try reach out to @clarketm and/or colleagues at Meta/Facebook?