Just to be clear, if you run a pleroma server, it’s...

Just to be clear, if you run a pleroma server, it’s a very good idea to add this to your nginx config immediately:

location ~ ^/(media|proxy) {
        add_header Content-Security-Policy "sandbox;";

Most people will already not be vulnerable to this for a variety of reasons, but this will absolutely stop it.

Like 1 26 May 2023 at 9:35 | Open on lain.com