[Koha-devel] External Independent Security Audits of Koha
dcook at prosentient.com.au
dcook at prosentient.com.au
Tue Jan 28 08:45:38 CET 2020
Hi all,
Sending this first to the dev list, and might send to the general list
depending on responses.
Has anyone in the Koha community commissioned an external independent
security audit of Koha? I know people do their own pen testing and security
audits, but has anyone paid for an external independent firm to certify
Koha?
Apologies for the vagueness. I'm asking this question on behalf of someone
else. I don't think it's a source code audit (like has been done for open
source encryption software like TrueCrypt). Rather, I think it's an audit of
an implemented Koha. Of course, any audit of an implementation would be
implementation specific, so I'm not quite sure of the intentions behind the
original question, but there you have it.
David Cook
Systems Librarian
Prosentient Systems
72/330 Wattle St
Ultimo, NSW 2007
Australia
Office: 02 9212 0899
Direct: 02 8005 0595
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.koha-community.org/pipermail/koha-devel/attachments/20200128/3374f505/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 484 bytes
Desc: not available
URL: <http://lists.koha-community.org/pipermail/koha-devel/attachments/20200128/3374f505/attachment.sig>
More information about the Koha-devel
mailing list