Raphaël Vinot
Raphaël Vinot
[List of known Office 365 URLs and IP address ranges](https://github.com/MISP/misp-warninglists/blob/master/lists/microsoft-office365/list.json) contains some CIRD blocks, but as it is a mix of domains, IPs and blocks, it is quite difficult to...
Example: the API has rate limiting and we cannot do more than 1 request/5 sec. We should put a lock in redis that expires 5s after the first query.
I sometimes endup in a state where `/etc/nginx/certs/dhparams.pem` exists but is empty. Would it make sense to test that and force regenerate it there? https://github.com/coolacid/docker-misp/blob/master/server/files/entrypoint_nginx.sh#L166
Automatic testing of CIRCLean functionalities with a malicious sample Dataset
A few things we've been thinking about to do some more hardening on the platform: * The shell of the pi user should be nologin and make sure it still...
Something to implement after we have a proper logging system: the raspberry 2 has 4 usb ports, it would be interesting to be able to optionally plug-in a 3rd USB...
Security review of PDF/Image/Audio conversion techniques (actual to future) - comparing results to see what's recommended for newer version of CIRCLean
Improve check of USB devices interacting with CIRCLean (e.g. block the non-mass-storage devices, check USB firmware)