Django by itself is fairly secure, it's your coding that makes it not secure and the resources you use.
1.) Don't use simple passwords.
-- 1.) Don't use simple passwords.
2.) Don't use /admin/ as your admin location. Do change it. - install something like honeypot to catch people trying to gain access to admin
3.) Don't forget you have decorators that can help keep thing secure like login_required and various others.
4.) Don't use hard coded sensitive data like.) hash keys, api keys, use environment variables.
4.) Don't use hard coded sensitive data like.) hash keys, api keys, use environment variables.
5.) Maintain backups, the more frequent your data changes the more frequent you should backup.
Hope this helps you some.
You received this message because you are subscribed to the Google Groups "Django users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to django-users+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/django-users/823dc144-b7ee-44b3-b8d6-a1677f344728%40googlegroups.com.
No comments:
Post a Comment