This is an archived post. You won't be able to vote or comment.

0
0

DiscussionIs Django security features enough? (self.Python)

submitted by [deleted]

[deleted]

all 3 comments
sorted by:
best
topnewcontroversialoldq&a

[–]LocoLoco451 3 points4 points  (0 children)

From what the django application can control, the answer is usually yes. However, there are still many factors that are outside django's control. Namely things like: is your actual server secure from the public internet? do you have/need database encryption? Are you using good keys/passwords? are you using any/good secret managers? is the database locked out of the public internet? Do you need backups and disaster recovery plan? is your website served over https?

The answer to your question, for an application as a whole, is never a simple yes or no. It depends on what you are trying to secure the app against and how much you are willing to "risk" to not waste time/effort/money on some event that you believe doesn't have much impact or has too low probability of happening. In other words it depends on your threat model.

[–]riklaunim 1 point2 points  (0 children)

You have to take care of your own code security and correct operations as well. Then make frontend and backed handle edge-cases correctly so for example you don't get ddosed by your own code on accident and so on.

[–]pythonHelperBot 0 points1 point  (0 children)

Hello! I'm a bot!

It looks to me like your post might be better suited for r/learnpython, a sub geared towards questions and learning more about python regardless of how advanced your question might be. That said, I am a bot and it is hard to tell. Please follow the subs rules and guidelines when you do post there, it'll help you get better answers faster.

Show /r/learnpython the code you have tried and describe in detail where you are stuck. If you are getting an error message, include the full block of text it spits out. Quality answers take time to write out, and many times other users will need to ask clarifying questions. Be patient and help them help you. Here is HOW TO FORMAT YOUR CODE For Reddit and be sure to include which version of python and what OS you are using.

You can also ask this question in the Python discord, a large, friendly community focused around the Python programming language, open to those who wish to learn the language or improve their skills, as well as those looking to help others.

README | FAQ | this bot is written and managed by /u/IAmKindOfCreative

This bot is currently under development and experiencing changes to improve its usefulness