PrivSec-dev/privsec.dev
1
0
Fork 0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2024-11-17 03:51:35 -05:00
Code

Minor Fixes

Browse Source
This commit is contained in:
Tommy 2022-07-23 07:38:10 -04:00 committed by tommytran732
parent 0dc9bf0e8e
commit 318dde6358
No known key found for this signature in database
GPG Key ID: 060B29EB996BD9F2
5 changed files with 11 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
_headers
View File

@ -5,5 +5,5 @@
Cross-Origin-Opener-Policy : same-origin
X-Frame-Options : DENY
X-XSS-Protection : 0
Permissions-Policy : accelerometer=(), autoplay=(), camera=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=()
Permissions-Policy : accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb(), sync-xhr=(), xr-spatial-tracking=()
Cross-Origin-Resource-Policy : same-origin

15
config.yml
View File

@ -2,7 +2,6 @@ baseURL: "https://privsec.dev"
title: PrivSec.dev
theme: WonderMod
copyright: '[CC BY-SA 4.0](https://creativecommons.org/licenses/by-sa/4.0/)'
enableRobotsTXT: true
minify:
@ -13,9 +12,11 @@ params:
env: production # to enable google analytics, opengraph, twitter-cards and schema.
author: PrivSec Team
# author: ["Me", "You"] # multiple authors
description: A practical approach to Privacy and Security
keywords: [Privacy, Security]
defaultTheme: dark # dark, light
disableThemeToggle: false
images: ["/privsec.png"]
ShowReadingTime: true
ShowPostNavLinks: true
ShowBreadCrumbs: true
@ -28,9 +29,9 @@ params:
# disableHLJS: true # to disable highlight.js
disableFingerprinting: true
favicon: "/favicon.ico"
favicon16x16: "</favicon-16x16.png>"
favicon32x32: "</favicon-32x32.png>"
apple_touch_icon: "</apple-touch-icon.png>"
favicon16x16: "/favicon-16x16.png"
favicon32x32: "/favicon-32x32.png"
apple_touch_icon: "/apple-touch-icon.png"
label:
text: "PrivSec.dev"
@ -63,9 +64,9 @@ params:
url: /index.xml
cover:
hidden: true # hide everywhere but not in structured data
hidden: false # hide everywhere but not in structured data
hiddenInList: true # hide on list pages and home
hiddenInSingle: true # hide on single page
hiddenInSingle: false # hide on single page
editPost:
URL: "https://github.com/PrivSec-dev/privsec.dev/blob/main/content"

3
content/knowledge/FLOSS Security.md
View File

@ -137,8 +137,7 @@ Fuzzing doesn't necessarily depend on access to source code, as it is a black-bo
Fuzzing frequently catches bugs that are only apparent by running a program, not by reading source code. Even so, the biggest beneficiaries of fuzzing are open source projects. [cURL](https://github.com/curl/curl-fuzzer), [OpenSSL](https://github.com/openssl/openssl/tree/master/fuzz), web browsers, text rendering libraries (HarfBuzz, FreeType) and toolchains (GCC, Clang, the official Go toolchain, etc.) are some notable examples.
> \- I've said it before but let me say it again: fuzzing is really the top method to find problems in curl once we've fixed all flaws that the static analyzers we use have pointed out. The primary fuzzing for curl is done by OSS-Fuzz, that tirelessly keeps hammering on the most recent curl code.
> I've said it before but let me say it again: fuzzing is really the top method to find problems in curl once we've fixed all flaws that the static analyzers we use have pointed out. The primary fuzzing for curl is done by OSS-Fuzz, that tirelessly keeps hammering on the most recent curl code.
- [Daniel Stenberg](https://daniel.haxx.se/) | [A Google grant for libcurl work](https://daniel.haxx.se/blog/2020/09/23/a-google-grant-for-libcurl-work/)

2
netlify.toml
View File

@ -8,7 +8,7 @@
Cross-Origin-Opener-Policy = "same-origin"
X-Frame-Options = "DENY"
X-XSS-Protection = "0"
Permissions-Policy = "accelerometer=(), autoplay=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=()"
Permissions-Policy = "accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), sync-xhr=(), xr-spatial-tracking=()"
Cross-Origin-Resource-Policy = "same-origin"
Expect-CT = "max-age=63072000, enforce"

BIN
static/privsec.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 7.9 KiB