Nextcloud Security (Linux): Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| (Eine dazwischenliegende Version desselben Benutzers wird nicht angezeigt) | |||
| Zeile 7: | Zeile 7: | ||
=== Probleme === | === Probleme === | ||
==== __Host-Prefix ==== | |||
<pre> | |||
The __Host prefix mitigates cookie injection vulnerabilities within potential third-party software sharing the same second level domain. It is an additional hardening on top of 'normal' same-site cookies. | |||
</pre> | |||
{{note|Aktuell noch nicht gelöst!}} | |||
[https://help.nextcloud.com/t/security-host-prefix-how-to-fix/30956/22 https://help.nextcloud.com/t/security-host-prefix-how-to-fix/30956/22] | |||
[https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy] | |||
[https://help.nextcloud.com/t/the-referrer-policy-http-header-is-not-set-to-no-referrer/36613 https://help.nextcloud.com/t/the-referrer-policy-http-header-is-not-set-to-no-referrer/36613] | |||
== Zwei-Faktor-Athentifizierung == | == Zwei-Faktor-Athentifizierung == | ||
Aktuelle Version vom 15. August 2021, 14:44 Uhr
Noch in Bearbeitung
Online Security Check
Zu finden unter https://scan.nextcloud.com/
Probleme
__Host-Prefix
The __Host prefix mitigates cookie injection vulnerabilities within potential third-party software sharing the same second level domain. It is an additional hardening on top of 'normal' same-site cookies.
Aktuell noch nicht gelöst!
https://help.nextcloud.com/t/security-host-prefix-how-to-fix/30956/22
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
https://help.nextcloud.com/t/the-referrer-policy-http-header-is-not-set-to-no-referrer/36613
Zwei-Faktor-Athentifizierung
Links
https://docs.nextcloud.com/server/latest/admin_manual/configuration_user/two_factor-auth.html
https://docs.nextcloud.com/server/latest/user_manual/de/user_2fa.html
https://apps.nextcloud.com/apps/twofactor_admin
https://www.techrepublic.com/article/how-to-enable-2fa-on-a-per-user-basis-in-nextcloud/
Zurück zu Nextcloud