public marks

PUBLIC MARKS with tags security & "cross-site scripting"

2014

An Introduction to Content Security Policy - HTML5 Rocks

by dzc
Instead of blindly trusting everything that a server delivers, CSP defines the Content-Security-Policy HTTP header that allows you to create a whitelist of sources of trusted content, and instructs the browser to only execute or render resources from those sources. Even if an attacker can find a hole through which to inject script, the script won’t match the whitelist, and therefore won’t be executed.

2009

PUBLIC TAGS related to tag security

apache +   api +   apple +   authentication +   best practices +   browser +   cookies +   cyber +   data +   docker +   firefox +   gawker +   google +   hacking +   hash +   hashing +   html +   html5 +   http +   https +   information +   internet +   javascript +   knockd +   linux +   network +   oAuth +   online +   password +   php +   plugin +   privacy +   rails +   scanner +   secu +   server +   shop +   sécurité +   software +   spam +   ssl +   technology +   tls +   tool +   tools +   tracking +   vulnerability +   web +   wifi +   wordpress +  

Active users

dzc
last mark : 02/09/2014 11:02