rwf2/Rocket
1
0
Fork 0
mirror of https://github.com/rwf2/Rocket.git synced 2025-01-29 12:52:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix MIME confusion attack URL in 'NoSniff' policy.

Browse Source
This commit is contained in:
Sergio Benitez 2021-06-01 11:27:43 -07:00
parent e73ff8c614
commit cf5ccc4b2e
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
core/lib/src/shield/policy.rs
View File

@ -238,7 +238,7 @@ impl Into<Header<'static>> for &ExpectCt {
///
/// [mime sniffing]: https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types#MIME_sniffing
/// [X-Content-Type-Options]: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options
/// [attacks]: https://shieldjs.github.io/docs/dont-sniff-mimetype/
/// [attacks]: https://blog.mozilla.org/security/2016/08/26/mitigating-mime-confusion-attacks-in-firefox/
pub enum NoSniff {
/// Turns off mime sniffing.
Enable,