Page MenuHomePhabricator

Write a general "Security guidelines" document
Open, WishlistPublic

Description

It would be helpful to write an overview document for installs interested in understanding the Phabricator security model: what we consider to be a threat; what options are available, etc.

Event Timeline

epriestley raised the priority of this task from to Wishlist.
epriestley updated the task description. (Show Details)
epriestley added a project: Security.
epriestley added a subscriber: epriestley.
  • Via HackerOne, git-remote-https may leak HTTP basic auth credentials to other users on the machine by making them visible in ps auxwww or similar. We consider these users trusted and this is outside the range of what we protect an install from.

Some guidance about "configure captchas if you're a public-facing, password-login install" would be good here too, but maybe we should just raise it as a setup issue if you have password auth enabled, and let users ignore it if they're VPN'd.

See a note in T12509 about HMAC key regeneration.

Some guidance about "configure captchas if you're a public-facing, password-login install" would be good here too

This isn't especially important after D19997.