Protect Website

Support Wissensdatenbank

Du bist hier:

Protect Website

You want to protect your website against Cross Site Scripting or Phishing? Then follow these instructions and check if your website works.  

  1. In the hosting administration you activate HSTS [1] and OCSP [2] in the SSL settings.
  2. Now create a .htaccess in your main domain directory and add the following code:
    #FireStorm Security Headers
    <IfModule mod_headers.c>
    Header set X-Content-Type-Options nosniff
    </IfModule>
    Header set Content-Security-Policy "default-src 'self';"
    Header set X-Frame-Options "SAMEORIGIN"
    Header set Referrer-Policy "no-referrer"
    Header set Permissions-Policy "microphone 'none'; geolocation 'none'"

     

  3. If you check your website, you should get the highest award at the following link: https://securityheaders.com/.
  4. Now check your website if everything is still working properly.

 

War dieser Artikel hilfreich?
0 out of 5 stars
5 Stars 0%
4 Stars 0%
3 Stars 0%
2 Stars 0%
1 Stars 0%
Wie können wir diesen Artikel verbessern?
Brauchst du Hilfe?
Related Post