How to Protect Site from Clickjacking Attack in Nginx

This time i will review about Protect site from clickjacking attact in nginx, or also known as "UI redress attact" are attacks that utilize transparent layer which aims to trick so that when the user clicks a button or a link on other sites such as the original site. And then the attacker intended to hijack the site by routing them to another site, most likely owned by another application, domain, or both. A common technique they do is with iframe technique.

Protect Site from Clickjacking Attack in Nginx
Nginx

This article I will give some tips and tricks about securing your site for users Nginx. By utilizing the function of the X-Frame-Options header site.

Preparation
  • Make sure you have installed Nginx on your server.
  • Then go to Settings in:
  • For Users Debian/Ubuntu:
$ sudo nano /etc/nginx/sites-availables/default
  • For Users Fedora/CentOS/RHEL:
$ sudo vi /etc/nginx/nginx.conf
  • Then add:
server {
...
add_header X-Frame-Options "SAMEORIGIN";
...
}

See the picture below.

Protect Site from Clickjacking Attack in Nginx

Here are three options in setting the X-frame-options:
  • SAMEORIGIN
This setting allows only the page itself or the page original.
  • DENY
These settings will reject a page that displays your site in frame or iframe.
  • ALLOW-FROM URI
This setting only allow displays of specific links original pages.

(See also: Optimizing in VPS Low Spec)

If you've finished, just you restart or reload your Nginx.

$ sudo service nginx restart
$ sudo systemctl restart nginx


Checking

Try to create an HTML file with the code below:

<DOCTYPE html>
<head>
<title>Test</title>
</head>
<frameset rows="100%,*" border="0">
<frame src="http://yoursite.com" frameborder="0" />
</frameset>
</html>


If only displays whitescreen (white pages) means that you have been successful.

May be useful, if you are still confused, please write your comments below :)
loading...
loading...

Comments

Post a Comment

Popular posts from this blog

Dunia Yang Menakjubkan

Image
  Kamera TV miniatur voyaging jauh ke dalam tubuh mengungkapkan sumber rasa sakit. Pembedahan tidak memerlukan jahitan. Robot lengan, kuat sebagai prajurit video game, memperbaiki hati sekarat. tongkat lnfrared menargetkan massa kanker yang berkembang pesat tumor. lnnovations hari ini hanya mulai mengungkapkan janji besok. Selanjutnya pada in operasi masa depan. bahkan di tangan para dokter terbaik, tubuh mengambil pemukulan selama operasi tradisional. Tapi seperti yang kita mengubah sudut ke dalam abad baru, ahli bedah merevolusi cara-cara mereka beroperasi. Mereka membuat potongan kecil, menggunakan komputer dan kamera untuk menerangi anatomi 's rahasia, dan berlatih bedah melalui stasiun jauh dari seberang ruangan atau di seluruh dunia. Resep ini mixes mentah berteknologi tinggi, sehat ukuran pengetahuan dan visi dan dosis besar kasih sayang. Karena obat selalu datang kembali untuk membantu seseorang. Orang dengan masalah. Orang seperti Cliff Boag. Lt itu sela...
Keep reading

Natural Beauty Of Western Sumatera Indonesia

Image
 Hello all friends bloggers, this time I will explain about the natural beauty of western Sumatra, of course, none other than it is the hometown of my own, located on the island of Sumatra Indonesia, for those who want to vacation or unwind come here just do not lose as Bali and others, OK without the need to elaborate, what are its beauty? 1. Singkarak Lake Singkarak Lake Is the largest lake in West Sumatra 21 km long, located on the edge of the highway Padang Panjang - Solok. Around the lake there are several places to rest and relax, and there are also various facilities canoe, boat and hotel. There is also a facility to surround lake with beautiful scenery. 2. Maninjau Lake The lake is quite beautiful and interesting located approximately 36 km from the city of Bukittinggi, can be reached by passing a winding road known as serpentine 44 (winding-ampek ampek). In this lake is no facility for swimming, fishing, water bikes are quite exciting as well There ...
Keep reading

6 Games Terminal Linux-based CLI

Image
A Cool game that was not always high graphics, game-based CLI was also good, such as childhood nostalgia in time before their game like today, for generation of the 90's you surely know gamewatch/gamebot? Just like that. For you gamers, might be worth trying a game like this, I wrote based on experience in linux, cool bro. Here are 6 Cool Games based CLI that can be played in the linux terminal. Moon Buggy Moon Buggy Moon Buggy is a GPL Game, where you must drive on the lunar surface with Buggy Car. This game is pretty addictive with the speed as well as game FlapyBird, Haha cool. Nudoku Nudoku Nudoku is a game in which the terminal and written in C and licensed under GPLv3. A logic game put the 9 numbers in 9 grid, Nudoku provide some level of difficulty from easy to hard, hmmm you must try. (See also: How to fix chromium can't running on kali linux) Robot Kitten Finds Robot Kitten Finds Robot Find Kitten is "zen simulation" in which you pla...
Keep reading

OverClock Adalah Cara Efektif Untuk Meningkatkan Kinerja Komputer

Image
  Kata overclock mungkin menjadi bahasa asing bagi seorang pemula yang tertarik dibidang hardware. Tetapi bagi mereka yang sudah mahir dibidang hardwawe, kata tersebut merupakan sebuah kata baku dan digunakan dalam kehidupan sehari hari. Bahasa overclock disusun dari dua kata yaitu over dan clock yang artinya melakukan setup mainboard clock bagi processor maupun sebuah VGA. Kata overclock dikonotasikan dengan membuat computer lebih cepat, entah kapan dimulai para hobbiest melakukan overclock. Diperkirakan overclock sudah dimulai pada tahun 1985, kalau tidak salah, computer pertama yang dijual yaitu jenis PC XT dengan processor tipe Intel (8088) dan dibuat lebih cepat bekerja dengan procesor dari NEC V20. Maklum kecepatan pada computer PC XT dahulu luar biasa lambatnya. Jangankan kata sistem Linux atau Windows. Yang kita kenal saat itu hanyalah PC-DOS IBM sebagai sistem operasi sebuah computer. DOS hanyalah berbentuk disket sudah dapat dijadikan storage pada com...
Keep reading

Differences in Language Java And C++ Program

Image
The difference between the Java programming language with C++ programming language can be traced from the system of inheritance, because they have a different design goals. C++ is especially designed for system programming, developed the C programming language for programming languages procedures designed to run the program more efficiently, in C++ has added support for object-oriented programs with static type, except in terms of control, including resource management and generic programming, in particular also added "standard library" including generic algorithms and program content. Java was originally designed to support computer networks. Java virtual machine is believed to be safe and very easy. Java with extensive design library to provide a complete platform abstraction. Java is an object oriented programming language that uses static type syntax similar to the C programming language, but it is not compatible with it. Java was designed from scratch, with the...
Keep reading