blob: c6df4099c3cc583abec71a275ba15849ed7d3231 (
plain)
1
2
3
4
5
6
7
8
|
[[!comment format=mdwn
username="guilhem"
avatar="https://seccdn.libravatar.org/avatar/86d6cb4bde1ef88730b14ccad0414c28"
subject="Further weakened the Content-Security-Policy"
date="2016-04-08T12:14:46Z"
content="""
Alright, just [removed](https://git.fripost.org/fripost-ansible/commit/?id=e370313ad5895871479fffc922e3c72c0375dbf2) [`upgrade-insecure-requests`](https://www.w3.org/TR/upgrade-insecure-requests/#upgrade-insecure-requests) and [`block-all-mixed-content`](https://www.w3.org/TR/mixed-content/#block_all_mixed_content) from the CSP. Again, with the hope that Roundcube's built-in filter is tight enough by default…
"""]]
|
