Skip to content
This repository has been archived by the owner on Jun 8, 2020. It is now read-only.
This repository has been archived by the owner on Jun 8, 2020. It is now read-only.

Security Audit #77

Jump to bottom
Jump to bottom
Open
Open
Security Audit#77
@ulissesferreira

Description

@ulissesferreira
ulissesferreira
opened on Feb 4, 2019

It is important for us to keep our data safe. We need to make sure we are not vulnerable to any of the following attacks. Add some more for our audit.

  • SQL Injection (do we escape all char entrances? the API only accepts requests from connect.upframe.io and beta.upframe.io but this can be easily spoofed...)
  • Brute forcing (add timers)
  • Are hashes complex enough? (make sure we are up to date in the difficulty stage. Our hashing algo is safe, but our steps are a little low I believe)

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions