diff --git a/_headers b/_headers index dc1b9d6..5531ad9 100644 --- a/_headers +++ b/_headers @@ -5,5 +5,5 @@ Cross-Origin-Opener-Policy : same-origin X-Frame-Options : DENY X-XSS-Protection : 0 - Permissions-Policy : accelerometer=(), autoplay=(), camera=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=() + Permissions-Policy : accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb(), sync-xhr=(), xr-spatial-tracking=() Cross-Origin-Resource-Policy : same-origin diff --git a/config.yml b/config.yml index 2853651..8dfda9e 100644 --- a/config.yml +++ b/config.yml @@ -2,7 +2,6 @@ baseURL: "https://privsec.dev" title: PrivSec.dev theme: WonderMod copyright: '[CC BY-SA 4.0](https://creativecommons.org/licenses/by-sa/4.0/)' - enableRobotsTXT: true minify: @@ -13,9 +12,11 @@ params: env: production # to enable google analytics, opengraph, twitter-cards and schema. author: PrivSec Team # author: ["Me", "You"] # multiple authors + description: A practical approach to Privacy and Security + keywords: [Privacy, Security] defaultTheme: dark # dark, light disableThemeToggle: false - + images: ["/privsec.png"] ShowReadingTime: true ShowPostNavLinks: true ShowBreadCrumbs: true @@ -28,9 +29,9 @@ params: # disableHLJS: true # to disable highlight.js disableFingerprinting: true favicon: "/favicon.ico" - favicon16x16: "" - favicon32x32: "" - apple_touch_icon: "" + favicon16x16: "/favicon-16x16.png" + favicon32x32: "/favicon-32x32.png" + apple_touch_icon: "/apple-touch-icon.png" label: text: "PrivSec.dev" @@ -63,9 +64,9 @@ params: url: /index.xml cover: - hidden: true # hide everywhere but not in structured data + hidden: false # hide everywhere but not in structured data hiddenInList: true # hide on list pages and home - hiddenInSingle: true # hide on single page + hiddenInSingle: false # hide on single page editPost: URL: "https://github.com/PrivSec-dev/privsec.dev/blob/main/content" diff --git a/content/knowledge/FLOSS Security.md b/content/knowledge/FLOSS Security.md index 2bbf102..fb4ce8d 100644 --- a/content/knowledge/FLOSS Security.md +++ b/content/knowledge/FLOSS Security.md @@ -137,8 +137,7 @@ Fuzzing doesn't necessarily depend on access to source code, as it is a black-bo Fuzzing frequently catches bugs that are only apparent by running a program, not by reading source code. Even so, the biggest beneficiaries of fuzzing are open source projects. [cURL](https://github.com/curl/curl-fuzzer), [OpenSSL](https://github.com/openssl/openssl/tree/master/fuzz), web browsers, text rendering libraries (HarfBuzz, FreeType) and toolchains (GCC, Clang, the official Go toolchain, etc.) are some notable examples. - -> \- I've said it before but let me say it again: fuzzing is really the top method to find problems in curl once we've fixed all flaws that the static analyzers we use have pointed out. The primary fuzzing for curl is done by OSS-Fuzz, that tirelessly keeps hammering on the most recent curl code. +> I've said it before but let me say it again: fuzzing is really the top method to find problems in curl once we've fixed all flaws that the static analyzers we use have pointed out. The primary fuzzing for curl is done by OSS-Fuzz, that tirelessly keeps hammering on the most recent curl code. - [Daniel Stenberg](https://daniel.haxx.se/) | [A Google grant for libcurl work](https://daniel.haxx.se/blog/2020/09/23/a-google-grant-for-libcurl-work/) diff --git a/netlify.toml b/netlify.toml index 443fe97..01ae9e2 100644 --- a/netlify.toml +++ b/netlify.toml @@ -8,7 +8,7 @@ Cross-Origin-Opener-Policy = "same-origin" X-Frame-Options = "DENY" X-XSS-Protection = "0" - Permissions-Policy = "accelerometer=(), autoplay=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=()" + Permissions-Policy = "accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), sync-xhr=(), xr-spatial-tracking=()" Cross-Origin-Resource-Policy = "same-origin" Expect-CT = "max-age=63072000, enforce" diff --git a/static/privsec.png b/static/privsec.png new file mode 100644 index 0000000..d3cecba Binary files /dev/null and b/static/privsec.png differ