nerodev
/
xmrauctions
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Open marketplace application for buying and selling items with digital cash.
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
This repo is archived. You can view files and clone it, but cannot push or open issues/pull-requests.
9 Commits
3 Branches
0 Tags
2.0 MiB
Python 39.8%
JavaScript 30.8%
CSS 14.9%
HTML 13.6%
Makefile 0.8%
 
 
 
 
 
dependabot/pip/pillow-9.3.0
dependabot/pip/django-registration-3.1.2
master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'f8e9fd0d62'
${ noResults }
Go to file
lalanza808 f8e9fd0d62 adding cors helper for static asset 5 years ago
bids init 5 years ago
bin dockerizing the remaining components, prepping for stage deployment 5 years ago
core finishing up makefile, adding health page, adjusting docker-compose files 5 years ago
items init 5 years ago
sales init 5 years ago
web moving fonts to src 5 years ago
xmrauctions adding cors helper for static asset 5 years ago
.dockerignore dockerizing the remaining components, prepping for stage deployment 5 years ago
.gitignore init 5 years ago
Dockerfile-monero dockerizing the remaining components, prepping for stage deployment 5 years ago
Dockerfile-xmrauctions dockerizing the remaining components, prepping for stage deployment 5 years ago
Makefile add admin user creation to makefile 5 years ago
README.md adding readme with security info 5 years ago
docker-compose.deploy.yaml removing migrations from docker-compose and using make command, add db dependency 5 years ago
docker-compose.yaml init 5 years ago
manage.py init 5 years ago
requirements.txt adding cors helper for static asset 5 years ago

README.md

xmrauctions

I'll be filling this in over the following days. Stay tuned.

Security Go-Live Checklist

In no particular order, nice to haves, and should likely haves:

  • Bad bot spam prevention (fail2ban)
  • DDoS mitigation
  • Secrets in SSM with env setting
  • Email spam prevention
  • Cloudtrail configured all regions
  • Web server access logs syncing to S3
  • Log rotate on access logs
  • Security ELK dashboard
  • Malicious Image upload abuse prevention
  • SES metric alarms
  • Budget alarms
  • Unit Tests