Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
I want to build a web site which at the backend uses node.js express.js and couchdb which will store some sensitive information. I want to know how is it possible to encrypt sensitive information and store it in couchdb. What is the most secure way to encrypt the data?
Thank you
Yes, it is possible. almost all languages support cryptography either directly or indirectly.
NodeJS provides a crypto module;
The crypto module provides cryptographic functionality that includes a set of wrappers for OpenSSL's hash, HMAC, cipher, decipher, sign, and verify function
for reference visit: https://nodejs.org/api/crypto.html
Related
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 4 years ago.
Improve this question
If a user submit different transactions, is possible to link the different transaction one to each other?
From a privacy point of view, the user is visible on the channel so, potentially may be possible to have a privacy leakage or am I wrong?
The answer is- it depends.
If the user uses the regular, standard x509 based identities then yes - it is easy to link the transactions.
However - if the user uses identity mixer, then it is impossible to link its transactions, because it signs as a random pseudonym each time.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
Coming from a more traditional web frameworks like Django and a little bit Rails, I am a bit confused about what is the best to register new user in your couchdb backed web app. The registration process should include sending an e-mail with an activation link.
Can this be handled in couchdb completely? Or do I just write a little bit of code in my web app layer as I did before?
Any link or short explanation is highly appreciated.
CouchDB has a basic authentication system that allows you to create users, manager their roles and permissions.
Although, you'll probably need to add a certain logic in your application layer to support some of the basic feature of an authentication system.
For example, you would have to add some code to support password recovery.
Also, it supports Cookie authentication but you can't revoke cookies from a user(If that's an issue for you, don't use CouchDB's auth system)
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
Guys i'm new in Nodejs,
please can it be used on the web like php?
First you decide what type of situation you have.
If you want to make shopping site, social network etc which use large data processing , then you go for node.js (for example linkedin is made in node.js ).
But if your website does not require much data processing in server side you can go for php.
Nodejs is little difficult to use but once you use it perfectly your website will run smooth.
Both are good languages.
Yes you can easily use nodejs as a server side language.
Nodejs is faster than php. You can use nodejs to speedup your loading speed of your website.
Because nodejs heavily use callbacks.
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 7 years ago.
Improve this question
Am trying to get Facebook and google login functionality integrated in my node.js app.
I have heard of passport library but has never used it. Can anybody help me,whether to use this library or write the code without it?
link for passport lib:- http://passportjs.org/docs/facebook
if suggesting passport library,kindly share its pros and cons.
TIA.
Everything is basically already done for you with Passport. I would say that and the fact that it has a huge community behind it is it's biggest advantages. If you need an example how to do it (and how easy it is) I recommend from this article on scotch.io
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 12 years ago.
Improve this question
I wonder how safe ssh is, espespecially in state of authentification/initializing. Is there any way for a hacker to sniff some "hashkeys" or stuff to decrypt my stream? or is SSH completly safe, with no yet known bugs or weaknesses?
I read some text on that topic, but almost all of them dont cover such special cases. at best they only tell to use ssh instead of telnet
thanks
SSH-1 is vulnerable to man-in-the-middle attacks.
SSH-2 can be vulnerable but usually only if you're accepting dodgy third party public keys, or not patching known implementation bugs.
Due to the nature of the asymmetric encryption used in ssh nothing transmitted over the wire can be used to decrypt your communication.
If you re only trusting the correctly signed public keys and using SSH-2.