Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Security] Securing our inbox against the flood #12

Open
2 tasks
troldmand opened this issue May 29, 2016 · 0 comments
Open
2 tasks

[Security] Securing our inbox against the flood #12

troldmand opened this issue May 29, 2016 · 0 comments
Milestone

Comments

@troldmand
Copy link
Contributor

troldmand commented May 29, 2016

We need to make sure nobody's submitting us hundreds of crap-campaigns.

Here's @dotnetCarpenter proposed sollutions:

  • Hmac sollution, including a timestamp (to make sure people use the form via. our site and can't submit forms in less than 30 seconds)
  • A honeypot - hidden input, for stupid robots.
@troldmand troldmand added this to the 2.0 Beta milestone May 29, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

1 participant