| OLD | NEW |
|---|
| 1 #!/usr/bin/perl -wT | 1 #!/usr/bin/perl -wT |
| 2 use strict; | 2 use strict; |
| 3 use CGI; | 3 use CGI; |
| 4 | 4 |
| 5 my $cgi = new CGI; | 5 my $cgi = new CGI; |
| 6 | 6 |
| 7 if ($cgi->param('enable-full-block')) { | 7 if ($cgi->param('enable-full-block')) { |
| 8 print "X-XSS-Protection: 1; mode=block\n"; | 8 print "X-XSS-Protection: 1; mode=block\n"; |
| 9 } else { |
| 10 print "X-XSS-Protection: 1\n"; |
| 9 } | 11 } |
| 10 print "Content-Type: text/html; charset=UTF-8\n\n"; | 12 print "Content-Type: text/html; charset=UTF-8\n\n"; |
| 11 | 13 |
| 12 print "<!DOCTYPE html>\n"; | 14 print "<!DOCTYPE html>\n"; |
| 13 print "<html>\n"; | 15 print "<html>\n"; |
| 14 print "<head>\n"; | 16 print "<head>\n"; |
| 15 print $cgi->param('q'); | 17 print $cgi->param('q'); |
| 16 print "</head>\n"; | 18 print "</head>\n"; |
| 17 print "<body>\n"; | 19 print "<body>\n"; |
| 18 print "<script src='safe-script.js'></script>\n"; | 20 print "<script src='safe-script.js'></script>\n"; |
| 19 print "</body>\n"; | 21 print "</body>\n"; |
| 20 print "</html>\n"; | 22 print "</html>\n"; |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 2524013002:
XSS Auditor: Block by default. (Closed)
