You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: SECURITY.md
+2-3Lines changed: 2 additions & 3 deletions
Original file line number
Diff line number
Diff line change
@@ -3,12 +3,11 @@
3
3
## Here are some steps to secure SourceBans++
4
4
5
5
1. Use HTTPS! HTTPS is Key if you don't want MitM Attacks happening. Many services such as StartSSL and Let's Encrypt provide free SSL Certificates.
6
-
2. Use a separate MySQL user just for SourceBans. Don't use the root MySQL user with SourceBans, make a separte SQL account that only has access to the SourceBans DB.
6
+
2. Use a separate MySQL user just for SourceBans. Don't use the root MySQL user with SourceBans, make a seperate SQL account that only has access to the SourceBans DB.
7
7
3. Make sure you do regular backups of your SourceBans Database.
8
8
4. Trust your Admins, don't give Admin access to your server(s) to a random stranger or a person you don't know.
9
-
5. Keep Steam OAuth-Only Login On
10
9
11
10
## I Found a Security Hole, what do I do?
12
11
13
-
1. Open an issue on the GitHub repo, with all nessesary info. (DON'T PUT HOW TO DO THE ACTUAL ATTACK, JUST THE IMPLICATIONS)
12
+
1. Open an issue on the GitHub repo, with all nessesary info.
14
13
2. If possible, open a Pull Request with a fix for the said Security Hole while following the instrucions in CONTRIBUTING.md.
0 commit comments