New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
mod_cspnonce: init at 1.3 #93527
mod_cspnonce: init at 1.3 #93527
Conversation
a1bb4f0
to
3ac41f1
Compare
CC'ing other httpd module maintainers, for review: @jglukasik @dirkx @womfoo |
I wonder if @jtojnar might find some time to review this... |
3ac41f1
to
713c4f8
Compare
I marked this as stale due to inactivity. → More info |
713c4f8
to
99baf30
Compare
99baf30
to
d3a1b3d
Compare
d3a1b3d
to
25edd52
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Luvely & builds (though at some point we ought to fix the random generation in the original module - as it is not cryptographically secure). Added an issue wyday/mod_cspnonce#8 and a potential fix wyday/mod_cspnonce#9
Any objections to merge? @SuperSandro2000? |
Motivation for this change
Packaged mod_cspnonce which deals with Content Security Policy.
This module enables a carefully generated nonce to be added in the server headers and thus improving CSP of the server.
I have it running on my server and works like a charm.
The way I have it running is:
and...
Things done
sandbox
innix.conf
on non-NixOS linux)nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
./result/bin/
)nix path-info -S
before and after)