Tag: nonce

Total 1 Post

CSP Nonce support in Nginx

January 16, 2017

Content Security Policy is an incredibly powerful security feature but in some circumstances it can be a little difficult to deploy. Removing inline scripts or styles often comes up as one of the hurdles. Here's how I introduced CSP nonce support in Nginx to counter the problem. Content Security Policy…

Continue Reading

The Author

Scott Helme

Scott Helme is a security researcher, international speaker and author of this blog. He is also the founder of securityheaders.io and report-uri.io, free tools to help organisations better deploy security.

Follow

Upcoming Events

BlackHat USA: (Las Vegas - USA)
22nd-27th July 2017
DEF CON: (Las Vegas - USA)
27th-30th July 2017
BSides Las Vegas: (Las Vegas - USA)
25th-26th July 2017
BSides Manchester: (Manchester - England)
17th August 2017
SmashingConf: (Freiburg - Germany)
11th-12th September 2017
ScotSoft: (Edinburgh - Scotland)
5th October 2017

Subscribe

Cheat Sheets

CSP Cheat Sheet
HSTS Cheat Sheet
HPKP Cheat Sheet
HTTPS Cheat Sheet
Performance Cheat Sheet
License CC BY-SA 4.0 - scotthelme.co.uk