Improve web applications security with the Content Security Policy

May 2, 2021Linux Windows

Content Security Policy (CSP) is a security layer that can help you detect and mitigate Cross Site Scripting (XSS) and data injection attacks. If your web application displays and stores custom HTML/CSS from user input, then you most certainly need a good filtering method that will remove any Inline JS (

Browser Support

Browsers that don’t support CSP simply ignore it, defaulting to the standard same-origin policy.

Header Chrome FireFox Safari Internet Explorer/Edge
Content-Security-Policy (1.0) 25+ 23+ 7+ –
Content-Security-Policy (2.0) 36+ 31+ 10+ –
X-Content-Security-Policy – 4.0+ – 10+
X-Webkit-CSP 14+ – 6+ –

As you can see in this table, CSP have good support for major browsers. More info on caniuse.

Header	Chrome	FireFox	Safari	Internet Explorer/Edge
Content-Security-Policy (1.0)	25+	23+	7+	–
Content-Security-Policy (2.0)	36+	31+	10+	–
X-Content-Security-Policy	–	4.0+	–	10+
X-Webkit-CSP	14+	–	6+	–

Join the discussion Cancel reply
I enjoy constructive responses and professional comments to my posts, and invite anyone to comment or link to my site.
Comment
Name *

Email *

Website

Save my name, email, and website in this browser for the next time I comment.

Stuck & need some help?

SERVER MANAGEMENT & MONITORING IS WHAT I DO!

I will manage your entire server, including the OS, Kernel, Apache, Litespeed, Nginx, PHP, MySQL, Exim, FTP, SSLs, etc., and everything on it!

CONTACT ME

You may also like

Linux ⚙️ Hardware

Reseat memory. Correctable memory error logging limit reached on DIMM

May 26, 2023

Docker Linux

How to increase docker container disk size (devicemapper)

December 29, 2023

Linux

Proxmox MailGateway login via Curl

September 25, 2023

Copyright © 2026 Stefan Pejcic. All rights reserved Copyright · Disclaimer · Disclosure
>_

Menu

OS

Linux

Windows

Servers

Apache

LiteSpeed

IIS

Tomcat

Databases

MySQL

PostgreSQL

MongoDB

Microsoft SQL

Virtualization

Virtualizor

VMware

VirtualBox

Panels

cPanel

CyberPanel

CWP

Plesk

DirectAdmin

Applications

WordPress

PrestaShop

Drupal

ColdFusion

CheatSheets

CSF CheatSheet

cPanel CheatSheet

.htaccess CheatSheet

APPCMD CheatSheet

Exim (MTA)

ESXi CheatSheet

ColdFusion Cheat Sheet

Git CheatSheet

SVG CheatSheet

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Cookie settings ACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary
Necessary
Always Enabled

Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.

Non-necessary
Non-necessary

Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.

SAVE & ACCEPT

Search

Improve web applications security with the Content Security Policy

Browser Support

Join the discussion Cancel reply

You may also like

Reseat memory. Correctable memory error logging limit reached on DIMM

How to increase docker container disk size (devicemapper)

Proxmox MailGateway login via Curl

Menu