Stop your website from being hijacked by another site. : Code Entry

Using a period in your URL can be done with IIS URL Rewrite

Current Code Entry

Stop your website from being hijacked by another site.

Article Entry Date: March 14,2025 @ 06:27:59 / Last Updated On: March 15,2025 @ 02:35:28

Ever wonder where your bandwidth is going?
Sometimes, it is used without your knowledge.
High bandwidth usage can happen when another website hijacks your website.
[How?]
This is where the hijacker takes your URL and embeds it within an iFrame.
Hijacking a website will allow them to load your website into theirs without your knowledge. (This happens more than you know.)
g
To combat this issue. Depending on your Server Infrastructure, choose one of the methods below.

[ASP.NET] (Includes Classic ASP as Well)

<?xml version="1.0" encoding="UTF-8"?>
<configuration>
    <system.webServer>
       <httpProtocol>
          <customHeaders>
<!--This line will make it so other sites cannot hijack our site through an iframe.-->
             <add name="X-Frame-Options" value="sameorigin" />
          </customHeaders>
       </httpProtocol>
    </system.webServer>
</configuration>

[.htaccess]

Header append X-Frame-Options: "SAMEORIGIN"

Enable on Apache

[Apache configuration]
[Debian] : /etc/apache2/conf-enabled/security.conf
[Redhat] : /etc/httpd/conf/httpd.conf

Header set X-Frame-Options: "SAMEORIGIN"  #Allow for Same Origin (Default Action)
Header set X-Frame-Options: "ALLOW-FROM http://example.com/" #Allow from specific origin
Header set X-Frame-Options: "DENY" #Deny to everyone

[Nginx]
To enable the X-Frame-Options header on Nginx simply add it to your server block config

add_header X-Frame-Options "sameorigin" always;

For more information on this, please have a look at the following page.
X-Frame-Options - How to Combat Clickjacking | (keycdn.com)«

About Company

Top Viewed Articles