GlobaLeaks icon indicating copy to clipboard operation
GlobaLeaks copied to clipboard

Published 20 hours ago verified publisher icon globaleaks

DoS resiliency approach section of the Application Security spec should be updated in relation to Token concept

Open evilaliv3 opened this issue 9 years ago • 3 comments

DoS resiliency approach section of the Application Security spec should be updated in relation to Token concept; this should be done in relation to all D8 implementations and in particular to the concept specified in https://github.com/globaleaks/GlobaLeaks/issues/934

Application Security: https://docs.globaleaks.org/en/main/security/ApplicationSecurity.html

evilaliv3 avatar May 10 '15 08:05 evilaliv3

Isn't better do a small research on the effectiveness of the system, before update the app sec doc ?

vecna avatar May 10 '15 08:05 vecna

ok, anyway one day we will have to do this :) let's keep the ticket open.

evilaliv3 avatar May 10 '15 08:05 evilaliv3

@evilaliv3 @vecna I would avoid to include any code into globaleaks without including the proper documentation in the specification documents. Please do not include in any globaleaks release any code without updating the specifications, it shall be part of a release process. No specification, no release must be the right approach

fpietrosanti avatar May 11 '15 07:05 fpietrosanti