Reject the unexpected - Content Security Policy in Gmail <http://feedproxy.google.com/~r/OfficialGmailBlog/~3/eBZg3kj9elw/reject-unexpected-content-security.html> Dec 16th 2014, 19:00, by The Gmail Team <http://www.blogger.com/profile/10103598893707869193>
Posted by Danesh Irani, Software Engineer, Gmail Security We know that the safety and reliability of your Gmail is super important to you, which is why we’re always working on security improvements like serving images through secure proxy servers <http://gmailblog.blogspot.com/2013/12/images-now-showing.html>, and requiring HTTPS <http://gmailblog.blogspot.com/2014/03/staying-at-forefront-of-email-security.html>. Today, Gmail on the desktop is becoming more secure with support for Content Security Policy (CSP). There are many great extensions for Gmail. Unfortunately, there are also some extensions that behave badly, loading code which interferes with your Gmail session, or malware which compromises your email’s security. Gmail’s CSP protects you, by stopping these extensions from loading unsafe code. Most popular (and well-behaved) extensions have already been updated to work with the CSP standard, but if you happen to have any trouble with an extension, try installing its latest version from your browser’s web store (for example, theChrome Web Store <https://chrome.google.com/webstore/category/apps> for Chrome users). CSP is just another example of how Gmail can help make your email experience safer. For advice and tools that help keep you safe across the web, you can always visit the Google Security Center <https://www.google.com/safetycenter/everyone/start/>. -- You received this message because you are subscribed to the Google Groups "Gmail-Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/gmail-users. For more options, visit https://groups.google.com/d/optout.
