Menu Search
Jump to the content X X
SmashingConf London Avatar

We use ad-blockers as well, you know. We gotta keep those servers running though. Did you know that we publish useful books and run friendly conferences — crafted for pros like yourself? E.g. our upcoming SmashingConf London, dedicated to all things web performance.

Author:

Nicolas is a front-end developer working in Switzerland for more than 10 years, in love with accessibility, progressive enhancement, Opquast (OPen Quality Standards), Open Web, CSP, CSS and everything related to web quality. He has developped several accessible plugins and a CSS microframework named Röcssti. You can find Nicolas on Twitter.

Twitter: Follow Nicolas Hoffmann on Twitter

Content Security Policy, Your Future Best Friend

A long time ago, my personal website was attacked. I do not know how it happened, but it happened. Fortunately, the damage from the attack was quite minor: A piece of JavaScript was inserted at the bottom of some pages. I updated the FTP and other credentials, cleaned up some files, and that was that.

Content Security Policy, Your Future Best Friend

One point made me mad: At the time, there was no simple solution that could have informed me there was a problem and — more importantly — that could have protected the website’s visitors from this annoying piece of code.

Read more...
1

↑ Back to top