A recent security assessment revealed a web application may be vulnerable to clickjacking. According to the application developers, a fix may be months away.
Which of the following should a security engineer configure on the web server to help mitigate the issue?
A. File upload size limits
B. HttpOnly cookie field
C. X-Frame-Options header
D. Input validation
How to PASS CAS-004 in First Attempt?FULL Printable PDF and Software. VALID exam to help you PASS. |
C
Agreed.
Source: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
And https://cheatsheetseries.owasp.org/cheatsheets/Clickjacking_Defense_Cheat_Sheet.html