From b3de6d147b5355f246e08bf580f8810060820c01 Mon Sep 17 00:00:00 2001 From: Christopher Fremond Date: Wed, 18 Mar 2020 03:31:35 +0000 Subject: [PATCH] typo --- subjects/forum/forum-security.en.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/subjects/forum/forum-security.en.md b/subjects/forum/forum-security.en.md index 886d297c..f61a1f23 100644 --- a/subjects/forum/forum-security.en.md +++ b/subjects/forum/forum-security.en.md @@ -7,6 +7,7 @@ You must follow the same [principles](https://public.01-edu.org/subjects/forum/f For this project you must take into account the security of your forum. - You should implement a Hypertext Transfer Protocol Secure ([HTTPS](https://www.globalsign.com/en/blog/the-difference-between-http-and-https)) protocol : + - Encrypted connection : for this you will have to generate an SSL certificate, you can think of this like a identity card for your website. You can create your certificates or use "Certificate Authorities"(CA's) - Clients session cookies should be unique. For instance, the session state is stored on the server and the session should present an unique identifier. This way the client has no direct access to it. Therefore, there is no way for attackers to read or tamper with session state. @@ -39,7 +40,7 @@ This project will help you learn about : - You must handle website errors, HTTPS status. - You must handle all sort of technical errors. - The code must respect the [**good practices**](https://public.01-edu.org/subjects/good-practices.en). -- It is recommend that the code should present a **test file**. +- It is recommended that the code should present a **test file**. ### Allowed packages