发表新帖
发表新帖

Securing my ASP.net MVC3 Website aganist “Click jacking”

后端 未结
关注
3 1880
盖世英雄少女心
盖世英雄少女心 2021-01-05 00:35

Recently I was flipping through some security issues faced by websites. Fortunately come across a new term \"Click jacking\"

I understood that this attack happens on

3条回答
  • 梦谈多话
    梦谈多话 (楼主)
    2021-01-05 01:01

    Have a look at this:

    https://developer.mozilla.org/en-US/docs/HTTP/X-Frame-Options#Configuring_Apache

    It's basically a response header sent out on all responses. You can code your site to do this for each individual page, but a better approach, if you are able to edit the configuration for JUST YOUR SITE, is to handle it there...

    Both APACHE and IIS should have options for this - the IIS one seems to be here:

    http://support.microsoft.com/kb/2694329

    0 讨论(0)
 看不清?
提交回复
热议问题