Dear Sirs, today i did lockout everybody on a test server of a web application while playing with CSP on the server side. no modern browser was able to open the page anymore. but the real problem was that the configuration interface was also not accessable anymore. the option security.csp.enable is long gone since FF 99 and i had to ""downgrade to FF 98"" to be able to access the misconfigured server. please enable that '''security.csp.enable''' in about:config back again at least for the development version of FF. someone might need it. other options are to install risky extensions and i would like to avoid that in the future. Yours E