mozilla / infosec.mozilla.org Public

Notifications You must be signed in to change notification settings
Fork 65
Star 95

Code
Issues 30
Pull requests 7
Actions
Projects
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Security
Insights

Issues: mozilla/infosec.mozilla.org

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

30 Open 20 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Assignee

Filter by who’s assigned

Assigned to nobody

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Issues list

الترجمة الى لغة غير مدرجة بالقائمة

#194 opened Aug 14, 2024 by Assaff1

#193 opened Aug 14, 2024 by slrslr

Phase out mentions of contribute.json?

#186 opened Mar 19, 2024 by janbrasna

Fix ambiguous language around crossdomain.xml and clientaccesspolicy.xml recommendation

#178 opened Feb 15, 2024 by gene1wood

'Terrapin' vulnerability - and suggested ciphers

#175 opened Dec 21, 2023 by jesusbagpuss

SSH Guidelines : Consider adding sntrup key exchange method

#170 opened Jun 19, 2023 by Fernandokitten

SSH Guidelines : Consider Adding PerSourceMaxStartups/PerSourceNetBlockSize

#158 opened Jan 28, 2022 by udf2457

Session Handling Documentation Problem (NotOnOrAfter vs SessionNotOnOrAfter)

#148 opened Apr 1, 2021 by gene1wood

Attempting SRI against some domains which do not support CORS

#147 opened Apr 1, 2021 by claudijd

Bad interaction between relative path GitHub pages links and CloudFront rewrite

#139 opened Aug 26, 2020 by gene1wood

Clean up MFA Rationale

#137 opened Aug 26, 2020 by ekr

XSS and CSP "default-src https:" inconsistency in web_security.md

#131 opened May 31, 2020 by polybuildr

Container and Kubernetes security

#130 opened May 26, 2020 by atombrella

HTTP X-XSS-Protection is not mandatory now (and is not recommended)

#124 opened Apr 24, 2020 by ghost

OpenSSH: Why ssh-rsa but not rsa-sha2-256/512 for HostKeyAlgorithms?

#119 opened Mar 6, 2020 by kevinoid

Align guidance on Public-Key-Pinning

#107 opened Sep 6, 2019 by rbsec

UsePrivilegeSeparation deprecated in OpenSSH 7.5

#101 opened Apr 14, 2019 by a1g3

Recommend <meta charset="utf-8"> before CSP <meta http-equiv="">?

#95 opened Mar 9, 2019 by Malvoz

Discussion : Change AWS cross account access grant model

#94 opened Feb 25, 2019 by gene1wood

Tracker : AWS Security additions

#87 opened Jan 14, 2019 by gene1wood

Consider having a document about typical logging needs Effort: MEDIUM (a day) help wanted

#83 opened Nov 20, 2018 by gdestuynder

Web security: Additions to Cross-Origin Resource Sharing

#82 opened Nov 20, 2018 by Malvoz

Proposal to add principle: Validate inputs and outputs PRINCIPLES

Security Principles

#80 opened Nov 13, 2018 by gdestuynder

Principles : Consider splitting out Fraud Detection and Forensics PRINCIPLES

Security Principles

#79 opened Nov 13, 2018 by gene1wood

Modern OpenSSH server configuration error on Ubuntu 18.04 LTS

#72 opened Aug 31, 2018 by boTux

Previous 1 2 Next

Previous Next

ProTip! What’s not been updated in a month: updated:<2024-10-11.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly