Re: has GnuCash code been reviewed for security?

Hi, Please be sure to CC gnucash-user on all your replies using your mailer's Reply-To-List or Reply-All functionality. You're now getting more into topics for the development list and not the user list, but suffice it to say that GnuCash is NOT a security application, it is a financial

Re: has GnuCash code been reviewed for security?

On Thu, Nov 9, 2017 at 9:24 AM, Buddha Buck wrote: > GnuCash also doesn't do any network access, either as a client or server. > For things like financial quote lookup, it calls 3rd-party tools. That's > another way that GnuCash minimizes its security footprint. > I was

Re: has GnuCash code been reviewed for security?

On Wed, Nov 8, 2017 at 8:35 PM, Marcus Winston wrote: > I've searched the web and mailing list archives for this one, but didn't > find it. I'm just curious if GnuCash has ever gone through a code review > specifically for security? Perhaps something like what was

Re: has GnuCash code been reviewed for security?

Hi, What specifically would such a code review be looking for? GnuCash is a financial application. It specifically does not provide security services like encryption, leaving that to security specific applications (like True Crypt). Passwords to online banking are never stored. All other