Skip to content

Blue team

CORS on Nginx

Red team
Green team
Purple team
Indigo team
Broomstick Brief
Ty Myrddin

Initializing search

Blue team

Going places
Going places
- Blue team @SOC
- Blue team for dev
- Blue team @Home
- Bulletproofing servers
  Bulletproofing servers
  - The wake-up call
  - Hardening Linux server
  - Hardening webserver
    
    Hardening webserver
    
    Build a more secure foundation for web applications
    
    TLS/SSL protocol security
    
    Information disclosure issues
    
    Turn on additional protection for web applications
    
    Locking down your web server’s cross-origin policies
    
    Locking down your web server’s cross-origin policies
    
    CORS best practices
    
    CORS on Nginx CORS on Nginx
    Table of contents
    
    Resources
    
    CORS on Apache
  - Smarter mail servers
- Honeytech for humans

Table of contents

Resources

CORS on Nginx¶

Resources¶

MDN Web docs: Cross-Origin Resource Sharing (CORS)
MDN Web docs: Access-Control-Allow-Origin
CORS on Nginx
Nginx Access-Control-Allow-Origin and CORS

Last update: 2025-05-19 17:28

Previous CORS best practices

Next CORS on Apache

© Copyright 2025, TyMyrddin.

Created using Sphinx 7.2.6. and Sphinx-Immaterial

Made with love in the Unseen University, 2025, with a forest garden fostered by /ut7