XSS-Vulnerability/EN/Solution Tips

Aus Siwecos

Version vom 4. April 2019, 12:15 Uhr von Siwebot (Diskussion | Beiträge)

(Unterschied) ← Nächstältere Version | Aktuelle Version (Unterschied) | Nächstjüngere Version → (Unterschied)

Wechseln zu: Navigation, Suche

If it was reported, that your website is probably not sufficiently protected from XSS attacks:

1; mode=block

Code example of an .htaccess file on an Apache webserver.

  # Turn on XSS prevention tools, activated by default in IE and Chrome
  Header set X-XSS-Protection "1; mode=block"

Here is an example of an .htaccess file which will set the Header Scanner to green. (.htaccess example)

Abgerufen von „https://www.siwecos.de/wiki/index.php?title=XSS-Vulnerability/EN/Solution_Tips&oldid=9519“