Difference between revisions of "OWASP Browser Security Project"

Jump to: navigation, search
Line 14: Line 14:
==Content Security Policy (CSP) ==
==Content Security Policy (CSP) ==
[https://developer.mozilla.org/en/Introducing_Content_Security_Policy Introducing CSP]
[https://wiki.mozilla.org/Security/CSP/Specification CSP Specification]
[https://wiki.mozilla.org/Security/CSP/Design_Considerations Design Considerations]
[https://wiki.mozilla.org/Security/CSP/Deploying How To Deploy CSP]
==Strict Transport Security (STS) ==
==Strict Transport Security (STS) ==

Revision as of 15:09, 26 September 2010


Project About

Template:Project Abou2t

Mozilla Firefox


The current version of Firefox can be downloaded here

Security Bug Bounty Program



Report a Firefox Security Bug


Please file a bug describing the security bug; be sure to check the box near the bottom of the entry form that marks this bug report as confidential. We encourage you to attach a "proof of concept" testcase or link to the bug report that demonstrates the vulnerability. While not required, such a testcase will help us judge submissions more quickly and accurately.

Notify the Mozilla Security Group by email and include the number of the bug you filed and a brief summary. If you cannot file a bug include the full details in the email and attach any proof of concept testcases or links. Mozilla Foundation staff and the Mozilla Security Group will consider your submission for the Security Bug Bounty and will contact you.