aeris22’s avataraeris22’s Twitter Archive—№ 109,857

    1. …in reply to @Scott_Helme
      @Scott_Helme @kermiite @securityheaders I see CSP the exact contrary. It's first filter like fail2ban to clean your log and let only really dangerous content hit your system and then you can focus only on those and not the random noise around. And then when you have real security strong needs, just CSP not enough.
      Permalink On twitter.com Twitter logo aeris22’s avatar Mood +4 🙂
  1. …in reply to @aeris22
    @Scott_Helme @kermiite @securityheaders HTML definitively too complex to have a single chance to clean the mess. DNS prefetching, content prefetching, DOH/DOT, HTTP2, embeded/recursive content with HTML/CSS/JS/SVG any able to convey any other, worker, storage. You want security? No external content at all. Never.
    On twitter.com Twitter logo aeris22’s avatar Mood +2 🙂