Account confirmers, Anti-spam team, Confirmed users, Bureaucrats and Sysops emeriti
4,925
edits
MOSS/Secure Open Source/Completed: Difference between revisions
MOSS/Secure Open Source/Completed (view source)
Revision as of 17:39, 2 February 2018
, 2 February 2018Add Knot DNS
(Add CakePHP) |
(Add Knot DNS) |
||
| Line 1: | Line 1: | ||
Secure Open Source has completed the following audits. | Secure Open Source has completed the following audits. | ||
==2018== | |||
===Knot DNS=== | |||
Dates: September 2017 - January 2018 | |||
[https://www.knot-dns.cz/ Knot DNS] is a high-performance authoritative-only DNS server which supports all key features of the modern domain name system. Also audited was [https://www.knot-resolver.cz/ Knot Resolver], a caching full DNS resolver implementation, including both a resolver library and a daemon. The audit was performed by [https://leastauthority.com/ Least Authority]. | |||
The team found the following problems: | |||
* 4 Medium | |||
* 7 Low | |||
* 2 Informational | |||
Least Authority made the following comment on the code quality: "Overall, we found the code to be well structured and cleanly written. Additionally Knot makes good use of available tools, such as fuzzers and compiler sanitizers." | |||
The documents are as follows: | |||
* [[Media:Knot-dns-report.pdf|Audit report]] | |||
* [https://docs.google.com/document/d/1FUlxVZdtlr6cDNtsHlzBI1d0IpGA_ey7zY-_xv-VWRM/edit# Fix and validation log] | |||
==2017== | ==2017== | ||