How to Prevent Content-Type Sniffing

Content-Type Sniffing is used to protect against MIME vulnerabilities. This happens when a user uploads a file but disguises it as something else. This is potentially dangerous because a malicious file could be upload to the server and then inject malicious code. The Content-Type Sniffing makes sure that files are served as the MIME file so no malicious code is executed. Here is how to enable the header.


Add the following snippet to your .conf file and reload

add_header X-Content-Type-Options "nosniff"


Add the following snippet to your .htaccess file, save and restart.

Header set X-Content-Type-Options "nosniff"

Jacob Billings
During my career, I have worked in a number of different roles that have helped me understand the overall software development process. These roles include project management, senior developer, Linux administrator, technical sales consultant, and company owner. Working within these roles has given me an in-depth knowledge of best practices in software development.
I offer a strong aptitude for learning new technologies and a proven track record of meeting aggressive goals. My most notable skills include:

Software Development: I bring over 13 years of experience in developing software for multiple clients in various environments. I have a solid knowledge of PHP, Javascript, MySQL, Python, and Java.

Over my career, I have had the opportunity to work on projects for some of the most recognized brands on the planet. Brands like Marriott Hotels, Microsoft, Ashland Chemical, Capital One Credit Cards, Cadbury Schweppes, GE and more. This has given me an in-depth understanding of my client's challenges as they grow. I know how to get a company from startup to maturity with technology. My specialties are in E-commerce(specifically Magento), process automation, and security.