Use a Content-Security-Policy
Closed, ResolvedPublic
Actions

Tags

Subscribers

mig5, entr0py, marmarek and 8 others

Assigned To

mig5

Authored By

JasonJAyalaP, Jan 14 2015

Description

whonix.org should use a Content-Security-Policy. Other security headers besides CSP are looking good already (test service).

https://forums.whonix.org/t/whonix-website-security-rating-b-mozilla-observatory

Details

Impact: Normal

Related Objects

Mentioned In: T137: whonix-setup-wizard usability feedback blog post

Event Timeline

JasonJAyalaP created this task.Jan 14 2015, 12:17 AM

JasonJAyalaP updated the task description. (Show Details)

JasonJAyalaP raised the priority of this task from to Normal.

JasonJAyalaP added projects: security, website.

JasonJAyalaP added subscribers: Patrick, troubadour, JasonJAyalaP.

Patrick added a project: Whonix.Jan 14 2015, 12:31 AM

Patrick added a subscriber: fortasse.

Patrick updated the task description. (Show Details)Jan 14 2015, 12:33 AM

Patrick updated the task description. (Show Details)

Patrick mentioned this in T137: whonix-setup-wizard usability feedback blog post.Feb 25 2015, 10:47 PM

Patrick set Impact to Needs Triage.Jun 20 2015, 10:03 PM

Patrick added a subscriber: HulaHoop.

Herald added a subscriber: • WhonixQubes. · View Herald TranscriptJun 20 2015, 10:03 PM

Patrick updated the task description. (Show Details)May 18 2017, 6:20 PM

Patrick changed Impact from Needs Triage to Normal.

Patrick added a subscriber: Ego.

Patrick added subscribers: anonymous1, marmarek, entr0py.

mig5 added a subscriber: mig5.Jul 6 2018, 8:43 AM

https://forums.whonix.org/t/content-security-policy-now-deployed-on-whonix-websites