Opened 6 years ago

Closed 6 years ago

#939 closed enhancement (wontfix)

Move "Security Considerations" to "Considerations for Production Deployments"

Reported by: Ben Sturmfels Owned by:
Priority: trivial Milestone:
Component: documentation Keywords:
Cc: Parent Tickets:

Description

This warning about user_dev/crypto/ is only relevant to a production environment. Recommend moving it.

Subtickets

Attachments (1)

939_crypto.diff (1.7 KB) - added by Ben Sturmfels 6 years ago.
Patch to move note about user_dev/crypto.

Download all attachments as: .zip

Change History (3)

Changed 6 years ago by Ben Sturmfels

Attachment: 939_crypto.diff added

Patch to move note about user_dev/crypto.

comment:1 Changed 6 years ago by Ben Sturmfels

Owner: sturm deleted
Status: newreview

Patch attached to move the note about user_dev/crypto to Considerations for Production Deployment.

comment:2 Changed 6 years ago by Christopher Allan Webber

Resolution: wontfix
Status: reviewclosed

I reviewed this, and I think I'm not going to move it... here's why: the "considerations for production deployments" provides some advanced features like running celery separately... but regardless of whether you do that or not, the advice about not leaking the crypto information is critical. Even for image-only sites, I think it's important that people don't leak that.

I understand the reasoning for this, especially given the name of that section, but I think we should leave this where it is.

Note: See TracTickets for help on using tickets.