W3C home > Mailing lists > Public > public-webappsec@w3.org > April 2014

CSP no-external-navigation

From: David Saez Padros <david@ols.es>
Date: Tue, 22 Apr 2014 09:40:08 +0200
Message-ID: <53561CD8.7000302@ols.es>
To: public-webappsec@w3.org
Hi

here is my vote for no-external-navigation directive, we have
seen several times malicious code injected in web pages that
redirect the visitor to pay per click affiliate programs or
to pages with dangerous code intended to infect the visitor

-- 
Best regards ...

----------------------------------------------------------------
    David Saez
    On-Line Services 2000 S.L.
    http://www.ols.es
----------------------------------------------------------------
Received on Tuesday, 22 April 2014 12:17:12 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 22 April 2014 12:17:13 UTC