add notes and TODO from nick's audit

author: bnewbold <bnewbold@robocracy.org> 2012-12-25 22:13:28 +0100
committer: bnewbold <bnewbold@robocracy.org> 2012-12-25 22:13:28 +0100
commit: 6e629a8f6731cf2d5291eb353c01ec4823bc89b3 (patch)
tree: 114e08b656ed310114633f438258f7d727c27339 /TODO
parent: 88ce810a6dc50ed02f7eb3712192823b4e5d5ca6 (diff)
download: exmachina-6e629a8f6731cf2d5291eb353c01ec4823bc89b3.tar.gz
exmachina-6e629a8f6731cf2d5291eb353c01ec4823bc89b3.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/TODO b/TODO
new file mode 100644
index 0000000..1ce9b5c
--- /dev/null
+++ b/TODO
@@ -0,0 +1,7 @@
+- socket overwriting problem; use directory trick?
+- strengthen default permissions on socket
+- comment socket code
+- client: if authentication fails, then bail
+- server: only allow one auth ever. close and quit after client closes.
+- document per-app socket naming intention
+- hash secret key, salted with 'exmachina'
author	bnewbold <bnewbold@robocracy.org>	2012-12-25 22:13:28 +0100
committer	bnewbold <bnewbold@robocracy.org>	2012-12-25 22:13:28 +0100
commit	6e629a8f6731cf2d5291eb353c01ec4823bc89b3 (patch)
tree	114e08b656ed310114633f438258f7d727c27339 /TODO
parent	88ce810a6dc50ed02f7eb3712192823b4e5d5ca6 (diff)
download	exmachina-6e629a8f6731cf2d5291eb353c01ec4823bc89b3.tar.gz exmachina-6e629a8f6731cf2d5291eb353c01ec4823bc89b3.zip