Erik Moeller
Erik Moeller
It's 2020 now, but it's also 2020, so deprecation has been partially delayed: https://blogs.windows.com/msedgedev/2020/03/31/tls-1-0-tls-1-1-schedule-update-edge-ie11/ > The plan to disable TLS 1.0/1.1 by default is being updated for Internet Explorer and...
Please go for it, thank you! :)
Still relevant. We provided some guidance on remote provisioning in the context of COVID-19, which we may want to incorporate into the regular docs: https://securedrop.org/news/covid-19-advisory-securedrop-and-remote-work/
We may want to conserve energy and just link to the advisory, given the likely transition to the SecureDrop Workstation, which is much better-suited for distributed use.
Retitled issue. While we can't be exhaustive, the "minimum security requirements" could indeed be fleshed out and clarified a bit.
Since this issue was filed, we've published additional guidance on freedom.press, e.g.: https://freedom.press/news/how-do-newsrooms-get-their-news-tips-we-reviewed-over-80-news-outlets/ https://freedom.press/training/blog/security-confidential-tip-pages/ That said, this issue is still valid; including some decision-making guidance in either the docs or...
I'm a little worried about overlinking. Terms often occur many times in documents like https://docs.securedrop.org/en/release-0.12.2/backup_workstations.html ; if each instance is linked, that could make it more difficult to focus on...
> I believe most of what the SS ladies were referring to (in the audit with @heartsucker) were terms in the Source and Journalist sections of the docs If we're...
Retitled for clarity. Low priority but nice first issue for any docs contributor.
Still a valid issue, the "Follow the prompts" in https://docs.securedrop.org/en/stable/create_admin_account.html is indeed a bit terse.