maybe there is something wrong but I'm checking this options too: - [app:main], *full_stack = false* - [app:main], ensure that *auto_reload_templates = False* to boost performance but you should read carefully respective comments. - [sa_auth], check that *cookie_secret* is a secret, if you use cookie based authentication or change to something better - [DEFAULT], create a valid configuration for *error notifications*, for example by email. -
On 19 October 2014 14:43, Raj <[email protected]> wrote: > I would like to like to know the list of essential *security related* > things needs to be performed before making a TG based application live on > the web. > For example: > > - In your *production.ini* file, under section [DEFAULT], set the > value of *debug* to *false* > - In your *production.ini* file, under section [app:main], change the > value of *beaker.session.secret* > > Can anybody contribute to this list? > > -- > You received this message because you are subscribed to the Google Groups > "TurboGears" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > Visit this group at http://groups.google.com/group/turbogears. > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "TurboGears" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/turbogears. For more options, visit https://groups.google.com/d/optout.
