Last active
April 6, 2016 13:41
-
-
Save april/35ec2d48a9622a81c95e13e7d364e22d to your computer and use it in GitHub Desktop.
battle of the blogs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ httpobs garron.net | |
| Score: 45 [D+] | |
| Modifiers: | |
| [ +5] Preloaded via the HTTP Strict Transport Security (HSTS) preloading process | |
| [ -5] X-Content-Type-Options header not implemented | |
| [ -10] X-XSS-Protection header not implemented | |
| [ -20] X-Frame-Options (XFO) header not implemented | |
| [ -25] Content Security Policy (CSP) header not implemented | |
| $ httpobs pokeinthe.io | |
| Score: 110 [A+] | |
| Modifiers: | |
| [ +5] Content Security Policy (CSP) implemented with default-src 'none' and no 'unsafe' | |
| [ +5] X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment