lain on Nostr: Just to be clear, if you run a pleroma server, it’s a very good idea to add this to ...
Just to be clear, if you run a pleroma server, it’s a very good idea to add this to your nginx config immediately:
location ~ ^/(media|proxy) {
add_header Content-Security-Policy "sandbox;";
Most people will already not be vulnerable to this for a variety of reasons, but this will absolutely stop it.
Published at
2023-05-26 09:35:37Event JSON
{
"id": "ff671398ed385fd480cf7dd1775d25003a5eb33268ee4c937aad8eac2812fae7",
"pubkey": "776ed1a547e2693a2c964e4824d6306a11aa364cd9c798f3e1ccd638af3d3725",
"created_at": 1685093737,
"kind": 1,
"tags": [
[
"mostr",
"https://lain.com/objects/611b96ca-ccb2-47ea-9d17-ea922fb16698"
]
],
"content": "Just to be clear, if you run a pleroma server, it’s a very good idea to add this to your nginx config immediately:\n\nlocation ~ ^/(media|proxy) {\n add_header Content-Security-Policy \"sandbox;\";\n\n\nMost people will already not be vulnerable to this for a variety of reasons, but this will absolutely stop it.",
"sig": "0f9b43c3834ae411c7915947146afcab7012c0222d3b39cc337bbad9ccfe762ca0d0f4188a2ec96b0215a240ee13e4e3040df4e0837f86dfd07bb207261df417"
}
