XSS-Vulnerability/EN/Solution Tips
Version vom 6. Februar 2019, 15:54 Uhr von Siwebot (Diskussion | Beiträge)
1; mode=block
Code example of an .htaccess file on an Apache webserver.
--snip
# Turn on XSS prevention tools, activated by default in IE and Chrome '''Header set X-XSS-Protection "1; mode=block"'''
—snap
Here is an example of an .htaccess file which will set the HTTP-Security-Header-Scanner to green. (.htaccess example (German only)