TechQA.

x content type options nosniff

665 views Asked by At

I was recently asked by our security team to add x content type options no sniff to a site I was also recently handed over to. After adding it in, it seemed to cause issues with user log in as well as block purchases that have been made through the site. To my knowledge this only explicitly sets the content type to what it is set as on page load and shouldn't affect submission or log-in.

<system.webServer>
 <httpProtocol>
   <customHeaders>
     <add name="X-Content-Type-Options" value="nosniff" />
   </customHeaders>
 </httpProtocol>
</system.webServer>

I am looking at the pages as I did see this could possibly affect scripting but not seeing anywhere where it declares a content type. This is put into an old site that is written in VB.net

html vb.net security web-config x-content-type-options
Original Q&A
0

There are 0 answers

Related Questions in HTML

Related Questions in VB.NET

Related Questions in SECURITY

Related Questions in WEB-CONFIG

Related Questions in X-CONTENT-TYPE-OPTIONS

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions