CSRF protection on all forms Rate limiting for login attempts Input validation and sanitization Secure password hashing No default credentials ...
This is a simple application whitelisting daemon for Linux. The dir=untrusted rule macro is deprecated and is planned for removal in the 2.1 release. Existing rules continue to parse for compatibility ...