redshiftzero
redshiftzero
We can look on the metadata route on source interface in order to verify the SecureDrop instance is running the latest version.
The [SecureDrop Deployment Best Practices](https://docs.securedrop.org/en/latest/deployment_practices.html) discusses several SSL/TLS configuration best practices for landing pages that are not currently checked using the automated scanner: * Hash function strength * Key length...
Suggested by @emkll: related to #400, if freedomofpress/securedrop#92 is ever implemented, we'd need to include the fingerprint of the securedrop in the directory so that sources have a place to...
Something that has come up a few times when writing grants for FPF or SecureDrop is: "how many instances have been added since X date?" Fortunately, it looks like on...
There is a metadata JSON endpoint on the source interface that shows the fingerprint of the SecureDrop instance's public key. For example, accessing http://3expgpdnrrzezf7r.onion/metadata on Feb 5, 2018 showed: ```...
For existing SecureDrop users, we need to import the submission private key from the SVS drive and the Journalist Interface URL and associated (`HidServAuth`/`ClientOnionAuthDir`) secret from the existing Journalist Workstation....
Currently we decrypt files and store them decrypted in the `sd-app` AppVM. However, there is not a strong reason to store decrypted versions of these files as we can decrypt...
Related to #1010 (although not strictly because we _could_ in that script combine coverage reports from each invocation of pytest) and #1004: one of the metrics we care about for...
Related to https://github.com/freedomofpress/securedrop/pull/5178 During the metadata sync, if we get updated information about the journalist associated with a given reply, we overwrite that on the client-side. This means that when...
We currently have multiple ways we determine whether or not the Controller object is in an authenticated state: * `is_authenticated` - property (which has a private attribute of its own...