Datadog has a security footgun by tyteen4a03 in c/programming@programming.dev

[-] tyteen4a03@lemmy.zip 3 points 6 months ago

So what part of the proposed solutions "wouldn't work"?

permalink
fedilink
source
context

Datadog has a security footgun by tyteen4a03 in c/programming@programming.dev

[-] tyteen4a03@lemmy.zip 2 points 6 months ago

Having something is better than nothing! In our case, having connect-src enabled would have avoided the incident.

permalink
fedilink
source
context

Datadog has a security footgun by tyteen4a03 in c/programming@programming.dev

[-] tyteen4a03@lemmy.zip 2 points 6 months ago* (last edited 6 months ago)

Not sure what you're referring to by "custom endpoints" - if you are a normal Datadog RUM user you can only ever send data to one of the several "sites". There's nothing customizable.

permalink
fedilink
source
context

Datadog has a security footgun (sheriffcranky.substack.com)

submitted 6 months ago by tyteen4a03@lemmy.zip to c/programming@programming.dev

9 comments fedilink

tyteen4a03

joined 11 months ago