PrivSec-dev/privsec.dev
1
0
Fork 0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2024-11-17 03:51:35 -05:00
Code

Minor Fixes

Browse Source
This commit is contained in:
Tommy 2022-07-23 07:38:10 -04:00 committed by tommytran732
parent 0dc9bf0e8e
commit 318dde6358
No known key found for this signature in database
GPG Key ID: 060B29EB996BD9F2
5 changed files with 11 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
_headers
View File

@ -5,5 +5,5 @@
Cross-Origin-Opener-Policy : same-origin Cross-Origin-Opener-Policy : same-origin
X-Frame-Options : DENY X-Frame-Options : DENY
X-XSS-Protection : 0 X-XSS-Protection : 0
Permissions-Policy : accelerometer=(), autoplay=(), camera=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=() Permissions-Policy : accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb(), sync-xhr=(), xr-spatial-tracking=()
Cross-Origin-Resource-Policy : same-origin Cross-Origin-Resource-Policy : same-origin

15
config.yml
View File

@ -2,7 +2,6 @@ baseURL: "https://privsec.dev"
title: PrivSec.dev title: PrivSec.dev
theme: WonderMod theme: WonderMod
copyright: '[CC BY-SA 4.0](https://creativecommons.org/licenses/by-sa/4.0/)' copyright: '[CC BY-SA 4.0](https://creativecommons.org/licenses/by-sa/4.0/)'
enableRobotsTXT: true enableRobotsTXT: true
minify: minify:
@ -13,9 +12,11 @@ params:
env: production # to enable google analytics, opengraph, twitter-cards and schema. env: production # to enable google analytics, opengraph, twitter-cards and schema.
author: PrivSec Team author: PrivSec Team
# author: ["Me", "You"] # multiple authors # author: ["Me", "You"] # multiple authors
description: A practical approach to Privacy and Security
keywords: [Privacy, Security]
defaultTheme: dark # dark, light defaultTheme: dark # dark, light
disableThemeToggle: false disableThemeToggle: false
images: ["/privsec.png"]
ShowReadingTime: true ShowReadingTime: true
ShowPostNavLinks: true ShowPostNavLinks: true
ShowBreadCrumbs: true ShowBreadCrumbs: true
@ -28,9 +29,9 @@ params:
# disableHLJS: true # to disable highlight.js # disableHLJS: true # to disable highlight.js
disableFingerprinting: true disableFingerprinting: true
favicon: "/favicon.ico" favicon: "/favicon.ico"
favicon16x16: "</favicon-16x16.png>" favicon16x16: "/favicon-16x16.png"
favicon32x32: "</favicon-32x32.png>" favicon32x32: "/favicon-32x32.png"
apple_touch_icon: "</apple-touch-icon.png>" apple_touch_icon: "/apple-touch-icon.png"
label: label:
text: "PrivSec.dev" text: "PrivSec.dev"
@ -63,9 +64,9 @@ params:
url: /index.xml url: /index.xml
cover: cover:
hidden: true # hide everywhere but not in structured data hidden: false # hide everywhere but not in structured data
hiddenInList: true # hide on list pages and home hiddenInList: true # hide on list pages and home
hiddenInSingle: true # hide on single page hiddenInSingle: false # hide on single page
editPost: editPost:
URL: "https://github.com/PrivSec-dev/privsec.dev/blob/main/content" URL: "https://github.com/PrivSec-dev/privsec.dev/blob/main/content"

3
content/knowledge/FLOSS Security.md
View File

@ -137,8 +137,7 @@ Fuzzing doesn't necessarily depend on access to source code, as it is a black-bo
Fuzzing frequently catches bugs that are only apparent by running a program, not by reading source code. Even so, the biggest beneficiaries of fuzzing are open source projects. [cURL](https://github.com/curl/curl-fuzzer), [OpenSSL](https://github.com/openssl/openssl/tree/master/fuzz), web browsers, text rendering libraries (HarfBuzz, FreeType) and toolchains (GCC, Clang, the official Go toolchain, etc.) are some notable examples. Fuzzing frequently catches bugs that are only apparent by running a program, not by reading source code. Even so, the biggest beneficiaries of fuzzing are open source projects. [cURL](https://github.com/curl/curl-fuzzer), [OpenSSL](https://github.com/openssl/openssl/tree/master/fuzz), web browsers, text rendering libraries (HarfBuzz, FreeType) and toolchains (GCC, Clang, the official Go toolchain, etc.) are some notable examples.
> I've said it before but let me say it again: fuzzing is really the top method to find problems in curl once we've fixed all flaws that the static analyzers we use have pointed out. The primary fuzzing for curl is done by OSS-Fuzz, that tirelessly keeps hammering on the most recent curl code.
> \- I've said it before but let me say it again: fuzzing is really the top method to find problems in curl once we've fixed all flaws that the static analyzers we use have pointed out. The primary fuzzing for curl is done by OSS-Fuzz, that tirelessly keeps hammering on the most recent curl code.
- [Daniel Stenberg](https://daniel.haxx.se/) | [A Google grant for libcurl work](https://daniel.haxx.se/blog/2020/09/23/a-google-grant-for-libcurl-work/) - [Daniel Stenberg](https://daniel.haxx.se/) | [A Google grant for libcurl work](https://daniel.haxx.se/blog/2020/09/23/a-google-grant-for-libcurl-work/)

2
netlify.toml
View File

@ -8,7 +8,7 @@
Cross-Origin-Opener-Policy = "same-origin" Cross-Origin-Opener-Policy = "same-origin"
X-Frame-Options = "DENY" X-Frame-Options = "DENY"
X-XSS-Protection = "0" X-XSS-Protection = "0"
Permissions-Policy = "accelerometer=(), autoplay=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=()" Permissions-Policy = "accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), sync-xhr=(), xr-spatial-tracking=()"
Cross-Origin-Resource-Policy = "same-origin" Cross-Origin-Resource-Policy = "same-origin"
Expect-CT = "max-age=63072000, enforce" Expect-CT = "max-age=63072000, enforce"

BIN
static/privsec.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 7.9 KiB