Randomblogz

January 9, 2021

HTTP Content Security Policy

HTTP Content Security Policy HTTP response headers help Web documents identify the valid sources to load various objects from like javascript, CSS files, etc. It is commonly denoted by CSP and has 3 versions as of now. Apart from response header, this policy can also be defined in meta, the reference link on how to do that is provided in the end.

Read More
August 29, 2020

My 3 years experience with Arch linux

My love for Linux started from about 10 years ago when Canonical used to distribute CDs for free promotion of their Ubuntu OS. I was fascinated by the performance, simplicity, freedom, and customization given by Linux. The better desktop manager packages removed the boring CLI image of the Linux in my mind and attracted me to explore this new platform. Though I tried different flavors of the Linux, eventually...

Read More
April 14, 2020

CORS

Any one with a little experience in web development or web security have heard of CORS (Cross Origin Resource Sharing). This is the most fundamental security header setup these days and is intended to restrict/allow resource sharing across different domains.

Read More
April 14, 2020

Except-CT

Except-CT, where CT stands for certificate Transparency, is a new security header which replaces the HPKP (HTTP Public Key Pinning) and enables websites to opt in to enforce-CT framework. OK, too much in one line, lets break it down:

Read More
RSS