LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

LCA: CSP for cross-site scripting protection

LCA: CSP for cross-site scripting protection

Posted Feb 7, 2013 20:55 UTC (Thu) by roc (subscriber, #30627)
In reply to: LCA: CSP for cross-site scripting protection by Cato
Parent article: LCA: CSP for cross-site scripting protection

From caniuse: "IE 10's support is limited to the 'sandbox' directive." So it doesn't have any of the features that Francois talked about. It's basically got CSP syntax for the <iframe sandbox> feature, and none of the actual CSP features.

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds