aboutsummaryrefslogtreecommitdiffstats
path: root/themes
diff options
context:
space:
mode:
authorLukas Reschke <lukas@owncloud.com>2015-10-30 20:19:23 +0100
committerLukas Reschke <lukas@owncloud.com>2015-10-30 20:19:23 +0100
commit78cad94ff4676ef401d2a75c8448f3726deefd18 (patch)
tree670e3c8bc3e6a3fc6476786ae6f9702f58decabe /themes
parent6911d8f0a4e688f3c84f2dd117424f887820750a (diff)
downloadnextcloud-server-78cad94ff4676ef401d2a75c8448f3726deefd18.tar.gz
nextcloud-server-78cad94ff4676ef401d2a75c8448f3726deefd18.zip
Add support for Redis password auth
For enhanced security it is recommended to configure Redis to only accept connections with a password. (http://redis.io/topics/security) This is especially critical since Redis supports the LUA scripting language and thus a simple SSRF vulnerability (as proven in http://benmmurphy.github.io/blog/2015/06/04/redis-eval-lua-sandbox-escape/ for example) may lead to a remote code execution.
Diffstat (limited to 'themes')
0 files changed, 0 insertions, 0 deletions