From c4cba5d628faa66a6433c181d50eaf4d5ddebb93 Mon Sep 17 00:00:00 2001 From: Daniel Micay Date: Fri, 25 Dec 2020 20:58:56 -0500 Subject: [PATCH] minor features page improvements --- static/features.html | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/static/features.html b/static/features.html index 78cbc851..cde794d7 100644 --- a/static/features.html +++ b/static/features.html @@ -174,10 +174,9 @@
  • Strong cipher configurations for all of our services (SSH, TLS, etc.) with only modern AEAD ciphers providing forward secrecy
  • DNSSEC for all our domains
    • +
  • DANE TLSA records for pinning keys for all our TLS services (mostly helps + to secure email due to lack of browser support)
  • SSHFP across all domains for pinning SSH keys
    • -
  • DANE TLSA records for pinning keys for all our TLS services (unfortunately only - used by a subset of other mail services in practice, and not yet web - browsers)
  • Static key pinning for our services in apps like Auditor
  • No cookies or similar client-side state for anything other than login sessions, which are set up via SameSite=strict cookies and have server-side session tracking @@ -197,8 +196,9 @@
  • Can make your own builds and make desired changes, so you aren't stuck with the decisions made by the upstream project
  • Non-profit project avoiding conflicts of interest by keeping commercialization - at a distance. Companies support the project rather than the project serving the - needs of any particular company
    • + at a distance. Companies support the project + rather than the project serving the needs of any + particular company
  • Strong privacy policies