I suggest you ...

← General

Security best practices

Currently (version 1.0.20.0) Orchard does such things as store database connection strings (including user IDs and passwords) in plain text.

Many orginazations need increased levels of security such as ecommerce (PCI compliance), healthcare (HIPPA) and public companies (SOX compliance).

It would be essential to such applications that Orchard be built with Microsoft's security best practices baked in at all stages of development.

Unfortunately security is not something that can be "bolted on" after the fact like a module. That is why this is being proposed as a core principal for the entire project.

71 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Forgot password?
    Create a password
    I agree to the terms of service
    Signed in as (Sign out)
    Close
    Close
    You have left! (?) (thinking…)
    JonnyBoatsJonnyBoats shared this idea  ·   ·  Admin →

    0 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Forgot password?
      Create a password
      I agree to the terms of service
      Signed in as (Sign out)
      Close
      Close
      Submitting...

      General

      Feedback and Knowledge Base

      (thinking…)