Setze X-FRAME-OPTIONS um Clickjacking zu verhindern
bernd commited on 2010-09-08 11:35:06
Zeige 1 geänderte Dateien mit 2 Einfügungen und 1 Löschungen.
git-svn-id: https://svn.schokokeks.org/repos/tools/webinterface/trunk@1806 87cf0b9e-d624-0410-a070-f6ee81989793
- inc/top.php d1157f3..801dcae
| ... | ... |
@@ -57,7 +57,8 @@ foreach ($submenu AS $weight => $data) {
|
| 57 | 57 |
|
| 58 | 58 |
DEBUG($submenu); |
| 59 | 59 |
|
| 60 |
- |
|
| 60 |
+// Verbiete das Laden in jeglichem Frameset |
|
| 61 |
+header("X-FRAME-OPTIONS: DENY");
|
|
| 61 | 62 |
header("Content-Type: ".config('mime_type'));
|
| 62 | 63 |
?> |
| 63 | 64 |
<?php echo '<?xml version="1.0" encoding="utf-8"?>'."\n"; ?> |
| 64 | 65 |