Guillem Gelabert
Fullstack Developer
Home
Series
About
2020
X-Permitted-Cross-Domain-Policies: Secure your PDFs (and Flash, if flash is still a thing when you read this post)
Sep 8
X-Powered-By: the price of vanity (22 bytes)
Aug 28
X-Frame-Options: iframes are so 2005
Aug 25
Referrer-Policy: Whatever I've been doing is non of your business
Aug 24
X-Content-Type-Options: Don't sniff the mimetype
Aug 23
Strict-Transport-Security: HTTPS and HTTPS only
Aug 22
Content-Security-Policy: you're not on the guest list
Aug 21
X-XSS-Protection: a security header gone wrong
Aug 20
