diff options
author | Joey Hess <joeyh@joeyh.name> | 2017-04-18 11:32:49 -0400 |
---|---|---|
committer | Joey Hess <joeyh@joeyh.name> | 2017-04-18 11:32:59 -0400 |
commit | 5e81ebbd1a6f8911acd537923f2f3c1df4971bbc (patch) | |
tree | dbfef37014fbe73930ddd4655ca3234337ca7c0a /TODO | |
parent | 5916c8406367b9033094359d6da2e079440d8f1c (diff) | |
download | debug-me-5e81ebbd1a6f8911acd537923f2f3c1df4971bbc.tar.gz |
fix backlog truncation bug
That I was stuck on for hours yesterday, oops!
This commit was sponsored by Bruno BEAUFILS on Patreon.
Diffstat (limited to 'TODO')
-rw-r--r-- | TODO | 4 |
1 files changed, 3 insertions, 1 deletions
@@ -1,4 +1,3 @@ -* Typing "top" causes only "to" to be accepted. * Improve JSON, removing use of "tag" * potential DOS where developer sends Activity Entered that all refer back to the first Activity Seen. This requires the user @@ -17,6 +16,9 @@ unlikely that a Activity Entered will legitimately refer to an old backlog item. * Encryption! +* Add random nonce to start message, to avoid replay issues. + (Or perhaps the encryption derives a RSA key in a way that avoids + replay..) * Network! * Server! * gpg key downloading, web of trust checking, prompting |