Which of the following is NOT a directive that can be used in a Content Security Policy?
- script-src
- font-src
- cookie-policy
- frame-ancestors
"cookie-policy" is not a valid directive in a Content Security Policy (CSP). CSPs define directives to control the sources from which certain types of content can be loaded. The other options like "script-src," "font-src," and "frame-ancestors" are valid directives used in CSP for different content types.
Loading...
Related Quiz
- Which layer of the OSI model does SSL/TLS primarily operate at?
- What is the primary purpose of Data Loss Prevention (DLP) solutions?
- A system that combines the features of both firewalls and IDS/IPS is commonly referred to as a _______.
- Jane, an IT manager, receives an email detailing a potential security incident. However, the email does not contain enough specifics to act upon. To improve the quality and consistency of incident reports, Jane might consider implementing what?
- How does a CSP help in mitigating cross-site scripting (XSS) attacks?