#Tag · Kakapo Social

Discussion

Loading...

#Tag

Log in

About
Code of conduct
Privacy
Users
Instances
About Bonfire

chaos.social boosted

@agowa338@chaos.social · activity timestamp 4 days ago

burritosec :donor: :red_panda:

@burritosec@infosec.exchange · activity timestamp 5 days ago

is mark-of-the-web a security boundary?

RE: https://infosec.exchange/@burritosec/115850040770342356

#Fediverse has decided Mark-of-the-web is NOT a security feature.

So can we now please drop any shitty CVE that claims not honoring it would be?
Like back then when #7Zip got shit for it...

Copy link
Flag this post

Block

@agowa338@chaos.social · activity timestamp 4 days ago

burritosec :donor: :red_panda:

@burritosec@infosec.exchange · activity timestamp 5 days ago

is mark-of-the-web a security boundary?

RE: https://infosec.exchange/@burritosec/115850040770342356

#Fediverse has decided Mark-of-the-web is NOT a security feature.

So can we now please drop any shitty CVE that claims not honoring it would be?
Like back then when #7Zip got shit for it...

Copy link
Flag this post

Block

Kakapo Social

Kakapo Social: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.1-beta.22 no JS en

Automatic federation enabled

Log in

Explore
About
Members
Code of Conduct