Skip to content

Commit

Permalink
framing
Browse files Browse the repository at this point in the history
  • Loading branch information
@kevinpapst
kevinpapst committed Dec 14, 2024
1 parent b79914a commit fb90489
Showing 1 changed file with 6 additions and 0 deletions.
6 changes: 6 additions & 0 deletions collections/_documentation/developer/bughunter.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -70,6 +70,12 @@ Ok, if you are using automated tests, at least make sure they work.
- it is not a security risk
- there is a `CAA` record with the value `0 issue "letsencrypt.org"` in place

### Website framing

Being able to frame a website doesn't necessarily mean, that there is a security threat.

Unless you can prove a clickjacking attack, I do not consider this hypothetical problem to be an issue.

### "Back" button that keeps working after logout

I do not consider this as a security risk. If a user leaves his browser unprotected, he has much more to worry about than a colleague
Expand Down

0 comments on commit fb90489

Please sign in to comment.