aboutsummaryrefslogtreecommitdiffstats
path: root/docs/source/conf.py
diff options
context:
space:
mode:
authorBrett Smith <brettcsmith@brettcsmith.org>2013-03-24 16:27:20 -0400
committerBrett Smith <brettcsmith@brettcsmith.org>2013-03-24 16:27:20 -0400
commit09102e0767d3c24e0be7988dc22113993cbd3d3d (patch)
treee5dab61bb0eb05077d5670dc560c8c7ed0d205d5 /docs/source/conf.py
parente84e1cdf12d2ac6e5fdd6bf6fac4cfab29065cee (diff)
downloadmediagoblin-09102e0767d3c24e0be7988dc22113993cbd3d3d.tar.lz
mediagoblin-09102e0767d3c24e0be7988dc22113993cbd3d3d.tar.xz
mediagoblin-09102e0767d3c24e0be7988dc22113993cbd3d3d.zip
Harden It's Dangerous key management.
The previous code was theoretically subject to timing attacks, where an attacker could read the key in between the time it was saved to the file and when the chmod happened. This version prevents that by using umasks to ensure the files always have the right permissions. This version also avoids using a key that cannot be saved due to some system setup bug.
Diffstat (limited to 'docs/source/conf.py')
0 files changed, 0 insertions, 0 deletions