[wp-trac] [WordPress Trac] #10237: Implement the new Mozilla feature to prevent XSS
WordPress Trac
wp-trac at lists.automattic.com
Fri Dec 25 00:10:44 UTC 2009
#10237: Implement the new Mozilla feature to prevent XSS
-------------------------------+--------------------------------------------
Reporter: Denis-de-Bernardy | Owner: ryan
Type: feature request | Status: new
Priority: normal | Milestone: 3.0
Component: Security | Version: 2.8
Severity: normal | Keywords:
-------------------------------+--------------------------------------------
Comment(by hakre):
A little patch but How To Test?!
1. [http://people.mozilla.org/~bsterne/content-security-
policy/download.html Get the pre-release of firefox containing Content
Security Policy (CSP)].
2. Create yourself a new profile on your desktop if you already have
firefox installed (which webdev does not?!) by using the -ProfileManager
switch. Keep in mind that firefox must be closed in order that you can
[http://support.mozilla.com/en-
US/kb/Managing+Profiles#Starting_the_Profile_Manager launch the
profilemanager].
3. Start the test-browser with your newly created test-profile.
4. Test. Here is a [http://people.mozilla.org/~bsterne/content-security-
policy/demo.cgi CSP Testcase].
--
Ticket URL: <http://core.trac.wordpress.org/ticket/10237#comment:9>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list