Preventing X-XSS-Protection header missing, X-Content-Type-Options etc

Preventing X-XSS-Protection header missing, X-Content-Type-Options etc

june123
Junior Member
Posts: 27
Threads: 9
Joined: Jun 2016
Reputation: 0

07-14-2017, 02:16 AM

How can issues such as X-XSS-Protection header missing, X-Content-Type-Options missing etc be prevented in Codeigniter ?

I have used the following code in header.php :

Code:
<?php

header('X-XSS-Protection: 1; mode=block');

header('X-Frame-Options: deny');

header('X-Content-Type-Options: nosniff');

header("Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline';");

?>

Messages In This Thread

Preventing X-XSS-Protection header missing, X-Content-Type-Options etc - by june123 - 07-14-2017, 02:16 AM

RE: Preventing X-XSS-Protection header missing, X-Content-Type-Options etc - by june123 - 07-16-2017, 07:58 PM

RE: Preventing X-XSS-Protection header missing, X-Content-Type-Options etc - by Paradinight - 07-17-2017, 08:14 PM

RE: Preventing X-XSS-Protection header missing, X-Content-Type-Options etc - by Martin7483 - 07-17-2017, 12:35 AM

RE: Preventing X-XSS-Protection header missing, X-Content-Type-Options etc - by Narf - 07-17-2017, 01:34 AM