Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Define a threat model for secrets used in infrastructure #255

Open
hellais opened this issue Oct 4, 2019 · 1 comment
Open

Define a threat model for secrets used in infrastructure #255

hellais opened this issue Oct 4, 2019 · 1 comment
Assignees
@FedericoCeratto @hellais
Labels
ooni/devops Issues related to https://github.com/ooni/sysadmin priority/low security

Comments

@hellais
Copy link
Member

hellais commented Oct 4, 2019

We have several secrets stored inside of the ansible vault which we should properly assess the threat model for.

Once we have a threat model we can understand how well we are doing and what we can do to improve the security of how we handle secrets distributed across our infrastructure.

Related: https://github.com/ooni/sysadmin/issues/258
@hellais
Copy link
Member Author

hellais commented Nov 20, 2019

Another aspect to evaluate as part of this is also secrets related to signing of applications.

@hellais hellais transferred this issue from ooni/sysadmin Jan 13, 2020
@hellais hellais added ooni/devops Issues related to https://github.com/ooni/sysadmin security labels Jan 13, 2020
@bassosimone bassosimone self-assigned this Sep 14, 2020
FedericoCeratto pushed a commit that referenced this issue Mar 16, 2023
0.38 Add more CORS decorators (#255)
6066dfd
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@FedericoCeratto FedericoCeratto

@hellais hellais

Labels
ooni/devops Issues related to https://github.com/ooni/sysadmin priority/low security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@FedericoCeratto @bassosimone @hellais