Hackers' Pub

Syntax	Description	Examples
`"` keyword `"`	Finds the string within quotes, including spaces. Case-insensitive. (Escape quotes inside with `\"`)	`"Hackers' Pub"`
`from:` handle	Finds content written by the specified user.	`from:hongminhee` `from:hongminhee@hollo.social`
`lang:` ISO 639-1	Finds content written in the specified language.	`lang:en`
`#` tag	Finds content with the specified tag. Case-insensitive.	`#HackersPub`
condition condition	Finds content that satisfies both conditions on either side of the space (logical AND).	`"Hackers' Pub" lang:en`
condition `OR` condition	Finds content that satisfies at least one of the conditions on either side of the OR operator (logical OR).	`#HackersPub OR "Hackers' Pub" lang:en`
`(` condition `)`	Combines the operators within the parentheses first.	`(#HackersPub OR "Hackers' Pub" OR "Hackers Pub") lang:en`

Julia Evans @b0rk@jvns.ca

2/2/2026, 8:15:17 PM

Public

i'm thinking about writing a zine reference for CORS, XSS, CSP, CSRF, etc because all the acronyms feel so impossible to remember and it's so useful to know the basics

but.. what is all that stuff _called_? "web security" and "browser security" both feel way too broad. So far I've just been saying "you know, CSRF and CORS and XSS and stuff" to people

Julia Evans @b0rk@jvns.ca

2/2/2026, 8:20:20 PM

Public

also I don't know what it is about CSRF and XSS and CORS and CSP etc that make it so hard to remember what they mean, I think it's partly that they all sound exactly the same. Like

- in CSRF the CS is for "cross-site"
- but in XSS "cross-site" is "XS"
- but in CSP the "CS" is for "content security"
- also in CORS the "CO" is for "cross origin" which is like cross site but a little different

If you have a fediverse account, you can quote this note from your own instance. Search https://social.jvns.ca/users/b0rk/statuses/116002889440601666 on your instance and quote it. (Note that quoting is not supported in Mastodon.)