+CC public-web-security
Hi Dave,
Thanks for the question. I'm CCing the group that is in the process of
standardizing CSP.
I have two points to make in response:
1. I agree that the behavior for how the resulting script node is
created should be specified. I personally don't see any "harm" in
Hello
we get new certificate from VeriSign and I have problem with usage.
Old certs work correctly (VeriSign and Thawte) but new one don't
work.
I am getting this :
Issued by: VeriSign Class 3 Code Signing 2010 CA - VeriSign, Inc.
Expires: Sat Mar 08, 2014
++ Error ++ THIS CERTIFICATE
Hi
In an installation that uses firefox, I need to embed videofiles that
are located on the local hard disk into webpages that are served by a
remote machine.
All video plugins I tested just dont display anything, probably
because of security restrictions (but there's no errormessage). I
could a
The CSP seems like it is going to be really useful. I have been
looking into specifying an approach to javascript that is compatible
with the CSP but also takes into account other things that people are
concerned about when designing web pages as well. One of those things
is giving javascript acc
