[PDB Announce] PeeringDB Source Code Security Audit
Job Snijders
job at ntt.net
Thu May 17 05:19:50 PDT 2018
Dear all,
PeeringDB is working towards releasing the PeeringDB source code to the
public under an open source license. We believe that open sourcing
PeeringDB has many benefits, such as lowering the bar for our community
to contribute to PeeringDB, understanding PeeringDB's inner workings,
and ease of onboarding for new vendors.
The PeeringDB board commissioned a comprehensive security audit of the
source code that drives peeringdb.com. The audit was deemed important to
ensure that open sourcing PeeringDB would not result in immediate
regret! :-)
PeeringDB tasked Computest (https://www.computest.nl/en/) to execute the
audit. Computest was excellent to work with, and produced very detailed
information for the PeeringDB developers to help address the issues that
were uncovered. The resulting security patches were deployed yesterday.
Below is a high level report on the results of this audit. In summary,
the auditor concluded the findings were minor.
http://docs.peeringdb.com/gov/misc/2018-05-16_Computest_Source_Code_Audit_TPM.pdf
Kind regards,
Job
More information about the Pdb-announce
mailing list