| Component | Translated | Untranslated | Untranslated words | Checks | Suggestions | Comments | |
|---|---|---|---|---|---|---|---|
| main MIT | 81% | 337 | 6,577 | 41 | 31 | 19 | Browse |
|
|
|||||||
| Project website | https://github.com/andersju/webbkoll | |
|---|---|---|
| Instructions for translators | https://github.com/andersju/webbkoll/blob/master/TRANSLATIONS.md |
|
| Translation license | MIT main | |
| Number of strings | 1,790 | |
| Number of words | 33,905 | |
| Number of characters | 246,970 | |
| Number of languages | 5 | |
| Number of source strings | 358 | |
| Number of source words | 6,781 | |
| Number of source characters | 49,394 | |
| Language | Translated | Strings of total | Untranslated | Untranslated words | Checks | Suggestions | Comments | |
|---|---|---|---|---|---|---|---|---|
| English | 14 | Browse | ||||||
|
|
||||||||
| French | 5% | 5% | 337 | 6,577 | 3 | 1 | 3 | Browse |
|
|
||||||||
| German | 1 | 27 | 7 | Browse | ||||
|
|
||||||||
| Norwegian Bokmål | 20 | 6 | Browse | |||||
|
|
||||||||
| Swedish | 3 | 3 | 3 | Browse | ||||
|
|
||||||||
The <strong><code>X-Content-Type-Options</code></strong> response HTTP header is a marker used by the server to indicate that the MIME types advertised in the Content-Type headers should not be changed and be followed. This allows to opt-out of MIME type sniffing, or, in other words, it is a way to say that the webmasters knew what they were doing.
HTTP-headeren <strong><code>X-Content-Type-Options</code></strong> er en markør som benyttes av tjeneren for å indikere at MIME-typene som annonseres i Content-Type-headers skal følges og ikke endres. Det lar en velge bort sniffing av MIME-type, eller med andre ord, det er en mulighet å si at nettstedsinnehaveren visste hva de gjorde.
Blocking the execution of inline JavaScript provides CSP's strongest protection against cross-site scripting attacks. Moving JavaScript to external files can also help make your site more maintainable.
Å forhindre kjøring av inline-Javascript gir CSPæs sterkeste beskyttelse mot cross-site scripting angrep. Å flytte JavaScript til eksterne filer kan også gjøre ditt nettsted enklere å vedlikeholde.
CSP makes it possible for server administrators to reduce or eliminate the vectors by which XSS can occur by specifying the domains that the browser should consider to be valid sources of executable scripts. A CSP compatible browser will then only execute scripts loaded in source files received from those whitelisted domains, ignoring all other script (including inline scripts and event-handling HTML attributes).
CSP gjør det mulig for tjenerradministratorer å redusere eller eliminere angrepsflatene der XSS kan inntreffer ved å spesifiserer de domener som nettleseren skal benytte som gyldige kilder for kjørbare skript. En CSP-kompatibel nettleser kommer da bare til å utføre skript fra filer mottatt fra disse hvitlistede domenene, og ignorerer alle andre skript (inklusive inline-skript og event-håndterte HTML-attributter).
Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement to distribution of malware.
Content Security Policy (CSP) er et ekstra lag sikkrerhet som hjelper med å oppdage og motvirke visse typer angrep, inklusive Cross-Site Scripting (XSS) og datainjiseringsangrep. Disse angrepene benyttes for alt fra datatyveri, og"defacement" til distribusjon av malware.