Free Post Ansible Managing servers with Ansible We've undergone some pretty significant changes with our infrastructure at Report URI and one of the things that's made those changes a lot easier to handle...
Free Post Report URI When logging causes security incidents; What we learned from GitHub and Twitter You may have seen the news recently about Twitter and GitHub having accidentally logged sensitive information like passwords in their applications or server logs. Logging is great and it provides...
Free Post Expect-CT CT is coming, are you ready? We're living in a pretty awesome time right now as we observe significant advances being made in the TLS/PKI ecosystem all around us. One of those advances...
Free Post chrome Adding Expect-CT and Expect-Staple entries to the HSTS Preload List Two of the new reporting features in https://report-uri.com currently require additions to the HSTS Preload List in Chromium. Here's a quick guide on how to request...
Free Post Report URI Utilising Cloudflare Workers to speed up Report URI At Report URI we're on the receiving end of several billion reports per month and handling that many reports requires a lot of processing. From analysing to see...
Free Post Report URI Introducing the CSP Wizard on Report URI Today I'm really excited to announce one of the first big steps that Report URI is taking towards making CSP even easier to use, deploy and maintain. With...
Free Post Report URI Introducing XSS Auditor reporting to Report URI Whilst we already have support for CSP reports over at Report URI, there is another potential source of information about XSS attacks that may be attempted or happening on your...
Free Post CSP Protect your site from Cryptojacking with CSP + SRI We saw a pretty big event take place over the weekend where a 3rd party provider was compromised and their JS library was altered. The alteration introduced a crypto mining...
Free Post Report URI Hacking Azure Table Storage to do ORDER BY on Timestamp I recently wrote about a little hack we did with Azure Table Storage to give us functionality equivalent to a LIKE query in SQL, something not natively supported in Table...
Free Post Report URI Launching Report URI JS The most common way to set a Content Security Policy on your site is to deliver it as a HTTP response header, but that's not always possible. On...
Follow