Bug report for SVN.
Added secure commenting system, which uses modified commentplugin to sign the comments targeted to special comment web (currently hardcoded to be "Comment")
The comments are signed with 224 bit sha hmac (random shared secret used as a key) and assigned an ID. Comments are visible if the author has a good reputation (in relation to the viewing user) or have received up votes from reputable users. Comments are not displayed if the content is modified in the target topic (hmac does not match), the comment is voted down or the comment author has a bad reputation. Comments which are from unknown users or have not been voted by reputable users are displayed in collapsed form.
--
TWiki:Main/JoonaKannisto
- 2011-04-28
Included a patch needed for
CommentPlugin to sign the comments.
--
TWiki:Main.JoonaKannisto
- 2011-04-28