bug fixes

2026-01-11 12:28:40 +00:00 · 2024-05-12 00:06:29 +00:00 · 2024-05-12 00:06:29 +00:00 · 6063258e83
commit 6063258e83
parent 4c210cd8ea
3 changed files with 12 additions and 2 deletions
--- a/.github/workflows/greetings.yml
+++ b/.github/workflows/greetings.yml
@ -9,5 +9,5 @@ jobs:
    - uses: actions/first-interaction@v1
      with:
        repo-token: ${{ secrets.GITHUB_TOKEN }}
-        issue-message: 'Thank you for createing this issue. We will check it as soon as possible.'
+        issue-message: 'Thank you for creating this issue. We will check it as soon as possible.'
        pr-message: 'Thank you for your pull request. We will check it as soon as possible.'
--- a/security/application.md
+++ b/security/application.md
@ -48,4 +48,5 @@ Only download software components from the official website never trust any thir
 * File paths are guarded to be within the application path
 * We mostly use soft deletes making it possible to restore most of the database data unless overwritten
 * We provide extensive user and group permission handling
-* Our default server configuration prevents the direct execution of any scripts aside from the main application
+* Our default server configuration prevents the direct execution of any scripts aside from the main application
+* We perform basic checks on user uploads
--- a/security/server.md
+++ b/security/server.md
@ -32,3 +32,12 @@ There are still many more uncovered topics and tools which definitely are worth
 * Firewall (e.g. UFW)
 * Intrusion detection system
 * SFTP vs FTP
+
+## Which security features do our servers implement?
+
+* We use fail2ban as intrusion prevention
+* We use UFW as firewall
+* We only allow access to the server through ssh login with keys + password and mandatory 2FA
+* We create backups for reconstruction
+* We use clamAV as virus scanner
+* Applications are restricted to their installation directory