This extension is part of the Rack::Protection project. Run gem install rack-protection to have it available.
- Prevented attack
-
Non-permanent XSS
- Supported browsers
-
Internet Explorer 8+ and Chrome
- More infos
-
blogs.msdn.com/b/ie/archive/2008/07/01/ie8-security-part-iv-the-xss-filter.aspx
</dl>
- xss_mode
-
How the browser should prevent the attack (default: :block)
</dl>
Sets X-XSS-Protection header to tell the browser to block attacks.
Options: