netinvent/npbackup
1
1
Fork 0
mirror of https://github.com/netinvent/npbackup.git synced 2025-10-06 03:35:26 +08:00
Code Issues Projects Releases Packages Wiki Activity

Update SECURITY.md

Browse source
This commit is contained in:
Orsiris de Jong 2023-12-29 12:45:23 +01:00
parent 5cfb6b73f1
commit 5de27a7fe6
1 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
SECURITY.md
View file

@ -17,4 +17,9 @@ Password command is also not logged.
Partially covered with password_command feature.
We should have a central password server that holds repo passwords, so password is never actually stored in config.
This will prevent local backups, so we need to think of a better zero knowledge strategy here.
This will prevent local backups, so we need to think of a better zero knowledge strategy here.
# NPF-SEC-00005: Viewer mode can bypass permissions
Since viewer mode requires actual knowledge of repo URI and repo password, there's no need to manage local permissions.
Viewer mode permissions are set to "restore".