Page MenuHomePhabricator

leoluk (Leopold Schabel)
User

Projects

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Friday

  • Clear sailing ahead.

User Details

User Since
Oct 12 2016, 10:13 AM (122 w, 6 d)
Availability
Available

Recent Activity

Tue, Feb 5

leoluk added a comment to D20092: Improve description text in the "Create Diff" form.

Thanks, greatly appreciated.

Tue, Feb 5, 2:17 PM
epriestley renamed leoluk from lou to leoluk.
Tue, Feb 5, 2:03 PM
leoluk added a comment to D20092: Improve description text in the "Create Diff" form.

Thanks, worked perfectly!

Tue, Feb 5, 1:59 PM
leoluk added a comment to D20092: Improve description text in the "Create Diff" form.

It's just a minor thing I was briefly confused about when I used the "Create Diff" for the first time.

Tue, Feb 5, 1:39 PM
leoluk edited the content of Community Resources.
Tue, Feb 5, 1:06 PM
leoluk requested review of D20092: Improve description text in the "Create Diff" form.
Tue, Feb 5, 12:24 PM
leoluk added inline comments to D20086: Slightly update the Diviner documentation.
Tue, Feb 5, 12:22 PM
leoluk updated leoluk.
Tue, Feb 5, 12:19 PM
leoluk awarded T8787: Add support for U2F MFA once browser implementations improve and compatible hardware is more widely available a Like token.
Tue, Feb 5, 10:58 AM · Haskell.org, Auth
leoluk awarded T13245: Improve MFA security by using replacing SMS code digits with emoji a Y So Serious token.
Tue, Feb 5, 10:52 AM · Security
leoluk awarded T929: Allow two arbitrary revisions to be compared in Diffusion a Love token.
Tue, Feb 5, 10:45 AM · Diffusion (v3), Restricted Project

Jun 24 2018

leoluk awarded T10538: Bridge GitHub to Phabricator a Love token.
Jun 24 2018, 5:13 PM · Nuance, GitHub

Oct 12 2016

leoluk added a comment to T4806: Give installs more control over session expiry / prompt for reauth before taking security actions.

Specific attack scenario: Phabricator is used to host proprietary code. Someone logs into Phabricator on a shared computer and forgets to log out. That shared computer is now forever logged into his account, allowing anyone using it to access said proprietary code. If the cookie would expire or at least be session-only, the risk would be significantly lower.

Oct 12 2016, 10:15 AM · Restricted Project, Auth