From c9d188950508f104a8115ec7a78335607d9b6037 Mon Sep 17 00:00:00 2001
From: David Rothstein <drothstein@gmail.com>
Date: Sat, 3 Oct 2015 15:13:35 -0400
Subject: Issue #462950 by pwolanin, Pere Orga: Mitigate the security risks
 that come from IE, Chrome and other browsers trying to sniff the mime type

---
 .htaccess | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to '.htaccess')

diff --git a/.htaccess b/.htaccess
index 7ccb6a2f6..151239c11 100644
--- a/.htaccess
+++ b/.htaccess
@@ -141,3 +141,9 @@ DirectoryIndex index.php index.html index.htm
     </FilesMatch>
   </IfModule>
 </IfModule>
+
+# Add headers to all responses.
+<IfModule mod_headers.c>
+  # Disable content sniffing, since it's an attack vector.
+  Header always set X-Content-Type-Options nosniff
+</IfModule>
-- 
cgit v1.2.3