From 1a53058ef0887df6dfb91ae269ef76ee5d3f9a31 Mon Sep 17 00:00:00 2001
From: Alexandre Alapetite <alexandre.alapetite@alexandra.dk>
Date: Mon, 29 Aug 2016 09:44:18 +0200
Subject: HTTP security: prevent reflection abuse

https://msdn.microsoft.com/en-us/library/gg622941(v=vs.85).aspx
---
 p/api/pshb.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/p/api/pshb.php b/p/api/pshb.php
index 136b98fc9..650767114 100644
--- a/p/api/pshb.php
+++ b/p/api/pshb.php
@@ -5,6 +5,7 @@ require(LIB_PATH . '/lib_rss.php');	//Includes class autoloader
 define('MAX_PAYLOAD', 3145728);
 
 header('Content-Type: text/plain; charset=UTF-8');
+header('X-Content-Type-Options: nosniff');
 
 function logMe($text) {
 	file_put_contents(USERS_PATH . '/_/log_pshb.txt', date('c') . "\t" . $text . "\n", FILE_APPEND);
-- 
cgit v1.2.3