searxng

mirror of https://github.com/searxng/searxng.git synced 2024-05-10 15:42:41 +00:00

History

Markus Heiser ab8e5383fb [mod] remove X-XSS-Protection headers Deprecated header not used by browsers nowadays[1]: """In modern browsers, X-XSS-Protection has been deprecated in favor of the Content-Security-Policy to disable the use of inline JavaScript. Its use can introduce XSS vulnerabilities in otherwise safe websites. This should not be used unless you need to support older web browsers that don’t yet support CSP. It is thus recommended to set the header as X-XSS-Protection: 0."""[2] [1] https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection [2] https://infosec.mozilla.org/guidelines/web_security#x-xss-protection Closes: https://github.com/searxng/searxng/issues/3171 Signed-off-by: Markus Heiser <markus.heiser@darmarit.de>		2024-01-31 17:23:41 +01:00
..
index.rst	[doc] rearranges Settings & Engines docs for better readability	2023-07-01 22:45:19 +02:00
settings.rst	[doc] rearranges Settings & Engines docs for better readability	2023-07-01 22:45:19 +02:00
settings_brand.rst	[doc] rearranges Settings & Engines docs for better readability	2023-07-01 22:45:19 +02:00
settings_categories_as_tabs.rst	[doc] rearranges Settings & Engines docs for better readability	2023-07-01 22:45:19 +02:00
settings_engine.rst	[doc] rearranges Settings & Engines docs for better readability	2023-07-01 22:45:19 +02:00
settings_general.rst	[fix] typo in docs/admin/settings/settings_general.rst (doc)	2023-08-11 11:07:38 +02:00
settings_outgoing.rst	[doc] rearranges Settings & Engines docs for better readability	2023-07-01 22:45:19 +02:00
settings_redis.rst	[fix] typos in documentation & messages	2023-08-13 08:50:29 +02:00
settings_search.rst	[mod] autocomplete.py: add support for mwmbl completions	2023-08-27 17:25:26 +02:00
settings_server.rst	[mod] remove X-XSS-Protection headers	2024-01-31 17:23:41 +01:00
settings_ui.rst	[mod] add hotkeys option to settings.yml	2023-10-09 18:13:00 +02:00