Free Post CSP Just how much traffic can you generate using CSP? The ability to send reports about violations of your CSP is a fantastic feature and allows you to monitor all kinds of issues on your site in real time. There...
Free Post hashing Disclosing password storage policies on report-uri.io After every breach hits the news, I, along with everyone else, receive the dreaded email asking me to reset my password. The email told me that my leaked password was...
Free Post report-uri.io Optimising for performance with Azure Table Storage I recently announced another huge update for https://report-uri.io and I covered all of the new features in a separate blog [https://scotthelme.co.uk/better-performance-and-custom-subdomains-on-report-uri-io/] . Alongside that I&...
Free Post report-uri.io The next major update for report-uri.io! I've just pushed the next major update to https://report-uri.io and there are some great new features that I'm really excited to be launching! The...
Free Post CSRF Let your framework do the heavy lifting I recently found myself in a conversation about the difficulties of building and implementing effective CSRF protection. Not only was I struggling to get across the technical details of a...
Free Post nginx Monitoring Server and Application Health with New Relic As the number of servers you manage increases, keeping an eye on them all can become a bit of a task in itself. I've used Munin [http://munin-monitoring....
Free Post CSP Security headers in the Alexa Top 1 Million I did a scan of the Alexa Top 1 Million back in August 2015 and published the results for everyone to see. Having just completed another scan of the current...
Free Post CSP Fixing mixed content with CSP As more and more sites are migrating to HTTPS, one of the biggest problems that will need solving is tracking down all of your HTTP resources to avoid mixed content...
Free Post report-uri.io Further improvements to report-uri.io I've just pushed another update to https://report-uri.io that brings quite a few new features and improvements. This update brings about the second significant set of changes...
Free Post CSP Hardening the CSP on report-uri.io It's pretty easy to get a basic CSP setup and issued on your site, but tightening up the policy can be tricky. To benefit from protection against XSS...
Follow