Commit Graph

81 Commits

Author SHA1 Message Date
Simon 2a90500af5 fix: Update architecture 2020-05-21 17:40:49 +02:00
Simon 3907d5f65c feat: Update drone encrypt variables 2020-05-21 17:19:02 +02:00
Simon 8fabda6820 feat: Add gitignore 2020-05-21 17:14:26 +02:00
Simon 1cd5839586 Move registry 2020-05-21 17:13:57 +02:00
Simon 1271d88643 feat: Ajout d'un article 2020-05-21 14:39:45 +02:00
Simon 82b647a0a5 Add h3 color 2020-04-21 14:29:54 +02:00
Simon 0b46e3dd6d Update content 2020-04-20 19:00:49 +00:00
Simon 262085825a Update content 2020-04-20 18:55:35 +00:00
Simon baab72eba9 Update content 2020-04-20 18:54:29 +00:00
Simon f23f2c8cbd Update content 2020-04-20 13:56:11 +00:00
Simon 98524076f3 Update content 2020-04-20 13:55:05 +00:00
Simon a9e757c0a8 Update content 2020-04-20 13:54:00 +00:00
Simon fd1c0ed3dc feat: Update nginx rules 2020-04-10 16:07:14 +02:00
Simon d2a2fac03f feat: Simplify traefik rules 2020-04-09 11:13:58 +02:00
Simon 6c62b1e1fe Update content 2020-04-08 13:56:57 +00:00
Simon 2657e0ebf6 Update content 2020-04-08 13:53:47 +00:00
Simon cbc98eb70f Update content 2020-04-08 13:49:35 +00:00
Simon 8d6ae83023 Update content 2020-04-08 13:44:21 +00:00
Simon 7af085fefe Update content 2020-04-08 13:38:05 +00:00
Simon d7690da5fa fix: Restart container 2020-04-05 10:04:19 +02:00
Simon 7f87d1b0d5 Update content 2020-04-02 09:48:28 +00:00
Simon 21be8714a3 Update content 2020-04-02 09:47:22 +00:00
Simon 766b9cb9cd Update content 2020-04-02 09:44:12 +00:00
Simon 6dd821b623 fix: Display stats 2020-04-01 12:10:39 +02:00
Simon 14d7d729df Update content 2020-03-25 09:09:26 +00:00
Simon 354b7128e0 feat: Remove volume... 2020-03-25 10:05:02 +01:00
Simon 102c9dca72 Update content 2020-03-25 08:54:49 +00:00
Simon 81f5e3c297 feat: Rename folder 2020-03-25 09:25:50 +01:00
Simon 55a351423c Update content 2020-03-25 08:17:08 +00:00
Simon c0a5b18430 feat: Remove hugo version 2020-03-25 09:11:13 +01:00
Simon c33bc993bc feat: Remove kosssi from repository name 2020-03-24 15:32:41 +01:00
Simon d2b84a6bdc feat: Update priority 2020-03-24 12:06:47 +01:00
Simon fe05d33a88 feat: Add registry config 2020-03-24 11:30:34 +01:00
Simon 62e6dbcd6b feat: Update hugo image 2020-03-24 10:50:07 +01:00
Simon 1cd865c8e4 feat: Create container script to generate stats.html 2020-03-24 10:14:26 +01:00
Simon 07d794f6b8 feat: Update stats script 2020-03-23 23:05:43 +01:00
Simon 4d2c270227 feat: Add autopush when content is modified 2020-03-23 23:05:43 +01:00
Simon 0b0ce61c2d Update content 2020-03-23 21:42:17 +00:00
Simon d98318159f Update content 2020-03-23 21:31:35 +00:00
Simon b44c483150 feat: Generate new image from Drone 2020-03-21 10:28:52 +01:00
Simon 783cb11adc feat: Add new image from registry 2020-03-21 09:24:44 +01:00
Simon 16339632fe feat: Add watchtower label 2020-03-21 09:24:02 +01:00
Simon 8fda48c2d3 feat: Update drone image 2020-03-19 11:14:02 +01:00
Simon df98d9106f feat: Add Drone config file 2020-03-17 11:26:22 +01:00
Simon 0c9e4b41b3 feat: Remove matomo and used goaccess to generate static analytics 2020-03-17 11:19:40 +01:00
Simon e1e6bcd9ea feat: Add matomo 2020-03-17 11:17:48 +01:00
Simon c9158e3d00 feat: Remove .env file 2020-03-13 08:54:15 +01:00
Simon cc2bfd1234 feat: Add security header
https://securityheaders.com/
2020-03-11 17:36:07 +01:00
Simon 78266d5b7b feat: Disable the auto detection of resource type
Protect yourself from malicious exploitation via MIME sniffing.
MIME-Type sniffing explained

Internet Explorer and Chrome browsers have a feature called "MIME-Type sniffing" that automatically detects a web resource's type. This means, for example, that a resource identified as an image can be read as a script if its content is a script.

This property allows a malicious person to send a file to your website to inject malicious code. We advise you to disable the MIME-Type sniffing to limit such activity.

Chrome has been working on a feature called Site Isolation which provides extensive mitigation against exploitation of these types of vulnerabilities. Site Isolation is more effective when MIME types are correct.
How to prevent MIME-Type sniffing

Configure a "X-Content-Type-Options" HTTP header. Add the "X-Content-Type-Options" HTTP header in the responses of each resource, associated to the "nosniff" value. It allows you to guard against such misinterpretations of your resources.

https://www.justegeek.fr/proteger-un-peu-plus-son-site-avec-la-balise-x-content-type-options/
2020-03-11 16:59:13 +01:00
Simon 6b2d95f245 fix: Avoid http-equiv <meta> tags
HTTP headers are more efficient than the http-equiv meta tags.
The <meta http-equiv=/> tags

The http-equiv meta tags allow to communicate to the web browser information equivalent to the ones of HTTP headers. For example, the meta <meta http-equiv=content-type/> will have the same consequences than the HTTP Content-Type header.

Two points don’t stimulate the use of http-equiv meta tags:

    Going through the meta requires to interpret the beginning of the HTML page, which is slower than going through the HTTP headers in terms of performance
    If the HTTP header is already present, the meta is ignored

In which cases are the <meta http-equiv=/> useful?

Only one case can justify the presence of these meta tags: if you don’t have access to the configuration of your server, and that is to say to the HTTP headers.

However, we advice you to use a configurable server so that you can establish the most efficient site possible.

This page contains 1 http-equiv meta tag. If possible, you should replace it:

    x-ua-compatible
2020-03-11 16:53:51 +01:00