psiphon

Security assessment

Bug #457333 reported by root on 2009-03-02

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	psiphon	Confirmed	Unknown	Unassigned

Bug Description

* Security assessment
            * SQL injection/XSS in management interface [mostly completed]
            * Parser
            * User accounts
            * Availability
            * Proper cryptographic randomness where required (http://www.phptalk.net/2009/01/27/all-about-randomness-and-entropy/)

See original description

Tags:

Revision history for this message

root (n-root-psiphon-ca) wrote on 2009-03-08:

Here's a link to known Apache vulnerabilities:

== http://httpd.apache.org/security/vulnerabilities_22.html ==

Adam P (adam+) on 2009-10-29

Changed in psiphon:
status:	New → Confirmed

Rod (rod-psiphon) on 2009-11-24

visibility:

private → public

Rod (rod-psiphon) on 2010-05-06

tags:

added: category3

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.