Oneesan succubus on Nostr: Just to be clear, if you run a pleroma server, it’s a very good idea to add this to ...
Just to be clear, if you run a pleroma server, it’s a very good idea to add this to your nginx config immediately:
location ~ ^/(media|proxy) {
add_header Content-Security-Policy "sandbox;";
Most people will already not be vulnerable to this for a variety of reasons, but this will absolutely stop it.
Published at
2023-05-26 09:37:16Event JSON
{
"id": "9e15d0265953f281e5815e2ca4e81da77505ea862c11246b6a20fbc802017749",
"pubkey": "55fae3fc0bd229e19c562b31e74558c8b9c5368bc0030e8c1c9ad09fd26f70e4",
"created_at": 1685093836,
"kind": 1,
"tags": [
[
"mostr",
"https://pleroma.soykaf.com/objects/f43c31aa-8913-414f-b145-4ffa8863c36f"
]
],
"content": "Just to be clear, if you run a pleroma server, it’s a very good idea to add this to your nginx config immediately:\n\nlocation ~ ^/(media|proxy) {\n add_header Content-Security-Policy \"sandbox;\";\n\n\nMost people will already not be vulnerable to this for a variety of reasons, but this will absolutely stop it.",
"sig": "3e6fe276540118832e106091325fc5ad0483c92fa083d3e3fc9bbf74cf6fc44ab0db73c82ed55ced3adb48d65e56a561c23de17dc3da1932cba6cb374d173e1e"
}
