re: Three Steps For Increasing The Security of Your Web Apps VIEW POST

TOP OF THREAD FULL DISCUSSION
re: I found observatory.mozilla.org/ helpful and cspisawesome.com/ as well.
 

Fantastic links Thomas. I really like CSP is Awesome it looks really helpful for setting up what is an incredibly complex thing.

For those who are doing .NET stuff, I know that Paul Seal's Security Headers tool can help to generate the web.config sections, too.

code of conduct - report abuse