mirror of
https://github.com/django/django.git
synced 2025-10-24 06:06:09 +00:00
Refs #26464 -- Added a link to OWASP Top 10 in security topic guide.
This commit is contained in:
@@ -273,5 +273,10 @@ security protection of the Web server, operating system and other components.
|
||||
* Keep your :setting:`SECRET_KEY` a secret.
|
||||
* It is a good idea to limit the accessibility of your caching system and
|
||||
database using a firewall.
|
||||
* Take a look at the Open Web Application Security Project (OWASP) `Top 10
|
||||
list`_ which identifies some common vulnerabilities in web applications. While
|
||||
Django has tools to address some of the issues, other issues must be
|
||||
accounted for in the design of your project.
|
||||
|
||||
.. _LimitRequestBody: https://httpd.apache.org/docs/2.4/mod/core.html#limitrequestbody
|
||||
.. _Top 10 list: https://www.owasp.org/index.php/Top_10_2013-Top_10
|
||||
|
Reference in New Issue
Block a user