guacamole-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Zer0Cool <>
Subject Re: Nginx Content_Security_Policy?
Date Mon, 13 May 2019 12:56:52 GMT
Thanks I will check on this when I can, right now I dont have access to my
test platform.

As I recall, I do have "Referrer-Policy" set to "no-referrer" and
'self'" should count for X-Frame-Options (though I have it in my config as

However I think my score was not correct. I got 80/100 with -20 from CSP, +5
"Referrer-Policy" and +5 "frame-ancestors 'self'" so maybe it capped me at
80 points due to CSP.

Sent from:

View raw message