| ... |
... |
@@ -54,6 +54,8 @@ |
| 54 |
54 |
You can add additional policies to the Content-Security-Policy header. |
| 55 |
55 |
{{/figure}} |
| 56 |
56 |
|
|
57 |
+{{version major="7" minor="2"/}} |
|
58 |
+ |
| 57 |
57 |
Ermöglicht es, weitere Werte zum Content-Security-Policy-Header hinzuzufügen. Für Backend (Verwaltungsoberfläche, Designer, Postfach) und für Frontend (Webformulare) können verschiedene Werte hinterlegt werden. |
| 58 |
58 |
|
| 59 |
59 |
Lets you add additional policies to the Content-Security-Policy header. Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross-Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft, to site defacement, to malware distribution. A primary goal of CSP is to mitigate and report XSS attacks. CSP makes it possible for server administrators to reduce or eliminate the vectors by which XSS can occur by specifying the domains that the browser should consider to be valid sources of executable scripts. |
