cavicorn

1912 WebWorks Projects

What the future of Quam Plures might look like

 
« Different Defaults[Merged] Admin Fire Tweak »

Nonce Prework

Link: https://code.launchpad.net/~edb/quam-plures/nonce_prework

In response to a possible cross site scripting attack, some of the team settled on a nonce as the right way to better secure an installation. Unfortunately the code base isn't as tight as it should be so there were areas where we weren't implementing the nonce approach even though we should be. This branch dances around the edges of the nonce solution by tightening up how admin-side forms are built.

Leave a comment »
Website design, creation & hosting services information

No feedback yet

Leave a comment


Your email address will not be revealed on this site.

Your URL will be displayed.
(Line breaks become <br />)
(Name, email & website)
(Allow users to contact you through a message form (your email will not be revealed.)
This is a captcha-picture. It is used to prevent mass-access by robots.

Please enter the characters from the image above. (case insensitive)
bio_pic.jpg

Quam Plures is an advanced blog engine with support for multiple blogs, users and languages released under the GNU GPL. It is powered by PHP and MySQL, and managed in LaunchPad.

This section covers what I'm doing in LP, and where I'd like to see QP go in the future.

Contents

My status

©2012 by admin

<hic sunt dracones />