Category: Apache

Session Cookie httponly and secure flag To secure your website cookies we have to made them secure (over https Chanel). First check how it looks. Open any page of your website. I am using Firefox […]

Directory traversal If we don’t set Directory traversal of then we can see any folder on website. Say for example – http://localhost/demo/mydir/ And it looks like – So all the 3 folder are visible to […]

Missing X-frame options header We have to change  X-frame options header. First check how it looks. Open any page of your website. I am using Firefox with firebug addon. You can use Google chrome as […]

Web browser XSS protection missing We have to set on Web browser XSS protection to XSS attack. First check how it looks. Open any page of your website. I am using Firefox with firebug addon. […]

X Content-Type Header Missing TO prevent MIME-type sniffing we have to be very cautious. First check how it looks. Open any page of your website. I am using Firefox with firebug addon. You can use […]