public marks

PUBLIC MARKS with tags security & "cross-site scripting"

2014

An Introduction to Content Security Policy - HTML5 Rocks

by dzc
Instead of blindly trusting everything that a server delivers, CSP defines the Content-Security-Policy HTTP header that allows you to create a whitelist of sources of trusted content, and instructs the browser to only execute or render resources from those sources. Even if an attacker can find a hole through which to inject script, the script won’t match the whitelist, and therefore won’t be executed.

2009

PUBLIC TAGS related to tag security

anonymat +   anonymity +   anonymous +   browser +   bruteforce +   cool +   cygwin +   download +   e-messenger +   exploit +   firefox +   firewall +   free +   freeware +   google +   greasemonkey +   howto +   http +   imported:del.icio.us +   instant +   internet +   lan +   linux +   list +   lists +   messenger +   myspace +   network +   networking +   online +   patching +   privacy +   proxies +   proxy +   search +   secure +   server +   software +   squid +   ssh +   ssl +   tools +   utile +   web +   websites +   whodad +   wifi +   windows +   代理上网 +   伺服器 +  

Active users

dzc
last mark : 02/09/2014 11:02