Question
How to prevent clickjacking using the Apache/nginx directives on the Plesk server?

Answer
To prevent clickjacking, add the X-Frame-Options directive with the DENY value to Apache and nginx configuration of a domain:

Log in to Plesk.
Go to Domains > example.com > Apache & nginx Settings.

For Apache, add this line to the Additional directives for HTTP and Additional directives for HTTPS fields:

Header set X-Frame-Options DENY

For nginx, add this line to the Additional nginx directives field:

add_header X-Frame-Options DENY;

Note: This configuration may break some Roundcube options.

Was this answer helpful? 0 Users Found This Useful (0 Votes)

Most Popular Articles

How to Log in to Plesk

A tutorial on how to access the Plesk Control Panel.   After you place an order and make a...
How to Edit a File in the Plesk File Manager

  1. Log in to your Plesk account. 2. Click on Files from the Sidebar Menu.   3. Under File...
How to Change the Password of a Plesk Account

  Follow these steps to change your Plesk account password.   1. Log in to your Plesk account....
How to Reset a Plesk's Account Password

  Follow these steps to reset your Plesk account password.   1. Open your Plesk login URL....
How to Update a Plesk Account's Email Address

  Follow these steps to change your Plesk contact email address.   1. Log in to your Plesk...