issues
search
RadicalMilitantLibrary
/
www
If you want to set up your own library, you need to get in touch with me (you will need a database).
http://atvkojvn5r744cxstejhtnxatpu6q7haxfgx7z2ku5rrom5p4fnsldad.onion/
17
stars
8
forks
source link
use SRI, CSP
#84
Open
vv01f
opened
5 years ago
vv01f
commented
5 years ago
measures:
[ ] detect current setting
[ ] warn if not met
[ ] put single things in settings or depend on settings
[ ] security by default (functionality off = e.g. no js, or controlled = signed only)
targets:
[ ] enforce https if availble
[ ] hash resources such as css,fonts…
[ ] prevent/moderate user generated css/(web)fonts
[ ] http only cookie flags
documentation e.g.
https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity
https://www.owasp.org/index.php/Content_Security_Policy
measures:
targets:
documentation e.g.