Completed
With HSTS
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
HTTP Security Headers You Need To Have On Your Web Apps
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Audience
- 3 What are HTTP Headers?
- 4 What are HTTP Security Headers?
- 5 HTTP Strict Transport Security (HSTS)
- 6 Without HSTS
- 7 What's the issue?
- 8 What can happen?
- 9 With HSTS
- 10 HSTS Options
- 11 HSTS Preload List
- 12 HSTS Gotchas
- 13 HSTS Impact of Retrofitting on Existing A
- 14 Quick word on HTTPS
- 15 Cross-Site Scripting (XSS)
- 16 XSS Final Note
- 17 Content Security Policy (CSP) Options
- 18 CSP Impacting of Retrofitting to Existing
- 19 Browser Sniffing Protection X-Content-Type
- 20 XCTO Impact of Retrofitting to Existing AS
- 21 Referer Header background
- 22 and even JIRA/Confluence/OWA
- 23 Referrer-Policy
- 24 Feature-Policy Is Experimental
- 25 How do I test my website?
- 26 Takeaways
- 27 Resources