Fossil

Check-in [f304ba31]
Login

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

Overview
Comment:Updated comment about "6-character random hex password" at the top level of the new setup docs to track [23a9f9bac2].
Downloads: Tarball | ZIP archive | SQL archive
Timelines: family | ancestors | descendants | both | trunk
Files: files | file ages | folders
SHA3-256: f304ba31fe42e2dabf1c6f208464d8aa65156f5d3f89012ae1c523d49dc11a35
User & Date: wyoung 2019-08-29 00:28:53
Context
2019-08-31
17:09
If there is nothing to stash, issue an error. check-in: d959c48a user: andybradford tags: trunk
16:42
Merge in latest from trunk. check-in: aa376391 user: andybradford tags: db-begin-txn-updates
16:23
Merge in trunk latest developments. Closed-Leaf check-in: 08291fec user: andybradford tags: test-updates
13:04
Ouput an error if the CGI control file is missing on the command line. This prevents IIS to fall in a endless loop. check-in: 6a59d33e user: tsbg tags: iis-cgi
2019-08-29
00:31
Merged in trunk changes check-in: 493254b2 user: wyoung tags: caps-doc
00:28
Updated comment about "6-character random hex password" at the top level of the new setup docs to track [23a9f9bac2]. check-in: f304ba31 user: wyoung tags: trunk
2019-08-28
19:52
Changed the hamburger menu link href from "#" to "/sitemap" so clicks on it do something useful in the noscript case. check-in: b2379b31 user: wyoung tags: trunk
Changes
Hide Diffs Unified Diffs Ignore Whitespace Patch

Changes to www/server/index.html.

76
77
78
79
80
81
82
83

84
85
86
87
88
89
90
91
href="$ROOT/help?cmd=ui"><tt>fossil ui</tt></a> locally and taking these
minimum recommended preparation steps:</p>

<ol>
  <li><p>Fossil creates only one user in a <a
  href="$ROOT/help?cmd=new">new repository</a> and gives it the <a
  href="../admin-v-setup.md">all-powerful Setup capability</a>.  (“s”)
  The 6-digit random hex password generated for that user is not very strong against

  remote attack, so because that user has so much power, you should
  give it a much stronger password under Admin → Users.</a></li>

  <li><p>Run the Admin → Security-Audit tool to verify that other
  security-related permissions and settings are as you want them.
  Consider clicking the “Take it private” link on that page to lock down
  the security on that site to a level appropriate to a private
  repository, even if you will eventually want some public service. It's







|
>
|







76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
href="$ROOT/help?cmd=ui"><tt>fossil ui</tt></a> locally and taking these
minimum recommended preparation steps:</p>

<ol>
  <li><p>Fossil creates only one user in a <a
  href="$ROOT/help?cmd=new">new repository</a> and gives it the <a
  href="../admin-v-setup.md">all-powerful Setup capability</a>.  (“s”)
  The 10-digit random password generated for that user is fairly strong
  against remote attack, even without explicit password guess rate
  limiting, but because that user has so much power, you may want to
  give it a much stronger password under Admin → Users.</a></li>

  <li><p>Run the Admin → Security-Audit tool to verify that other
  security-related permissions and settings are as you want them.
  Consider clicking the “Take it private” link on that page to lock down
  the security on that site to a level appropriate to a private
  repository, even if you will eventually want some public service. It's