Project

General

Profile

Actions
Copy link

Task #104570

open

Reduce amount of noisy CSP reports

Added by Oliver Hader 4 months ago. Updated 25 days ago.

Status:
Under Review
Priority:
Should have
Assignee:
Oliver Hader
Category:
Content Security Policy
Target version:
-
Start date:
2024-08-08
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
12
PHP Version:
Tags:
Complexity:
Sprint Focus:

Description

To reduce the amount of invalid reports (e.g. caused by automated security scans that are brute forcing any URL with random parameter), the internal CSP reporting endpoint now requires an additional hash value.

Actions
Copy link
 #1

Updated by Gerrit Code Review 4 months ago

  • Status changed from New to Under Review

Patch set 1 for branch main of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/85554

Actions
Copy link
 #2

Updated by Oliver Hader 3 months ago

  • Category changed from Security to Content Security Policy
Actions
Copy link
 #3

Updated by Gerrit Code Review about 1 month ago

Patch set 2 for branch main of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/85554

Actions
Copy link
 #4

Updated by Gerrit Code Review 25 days ago

Patch set 3 for branch main of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/85554

Actions
Copy link

Also available in: Atom PDF