Select Page

Category: Security

Safari Ripper ☠️

Security researcher Sabri posted a bit of code that will “force restart any iOS device.” It’s interesting to see HTML & CSS have this kind of dangerous power. It’s essentially a ton of s scaled to be pretty huge and then set over a repeating JPG image with each blurring the background via backdrop-filter. It must cause such extreme and unhandled memory usage that it wreaks havoc on the browser as well as the entire operating system. I was trying to test it out myself and be really careful not to execute it… but of course I did, and it crashed my Chrome 68 on a MacBook Pro. Not the whole operating system, but I had to force quit the browser. Then again, I suppose even while(true) {} can do that! The comment thread on the gist hast more interesting details, like how it crashes iOS Safari 9+ (including the new version 12!) and weird behavior on the PlayStation 3 native browser. Direct Link to Article — Permalink The post Safari Ripper ☠️ appeared first on CSS-Tricks....

Read More

Third party CSS is not safe

…because third-party anything really isn’t safe. Jake Archibald: If you’re worried about users tricking your site into loading third party resources, you can use CSP as a safety net, to limit where images, scripts and styles can be fetched from. We’ve long discussed security considerations for using and managing third-party scripts, but the topic of security in third-party CSS was recently broached in response to a “trick” that employs keylogging via CSS. Jake’s post is a worthy read because it takes a high-level look at all third-party assets and the risks they pose. Direct Link to Article — Permalink Third party CSS is not safe is a post from CSS-Tricks...

Read More

Quick Wins For Improving Performance And Security Of Your Website

When it comes to building and maintaining a website, one has to take a ton of things into consideration. However, in an era when people want to see results fast, while at the same time knowing that their information online is secure, all webmasters should strive for a couple of things: Improving the performance of their website, Increasing their website’s security. Both of these goals are vital in order to run a successful website....

Read More
000webhost logo