1- use rate limit to block brute force attack like this
2- use anti bot services like reCAPTCHA
3- config web server to disable directory browsing (like here)
4- scanning all file and check allowed type before upload to server(ClamAV).
Created
June 24, 2020 17:48
-
-
Save mthri/57b49e01289a2f3a63caaaa17663d59a to your computer and use it in GitHub Desktop.
A checklist to secure Django site
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment