Content-Type Sniffing is used to protect against MIME vulnerabilities. This happens when a user uploads a file but disguises it as something else. This is potentially dangerous because a malicious file could be upload to the server and then inject malicious code. The Content-Type Sniffing makes sure that files are served as the MIME file so no malicious code is executed. Here is how to enable the header.
Add the following snippet to your .conf file and reload
add_header X-Content-Type-Options "nosniff"
Add the following snippet to your .htaccess file, save and restart.
Header set X-Content-Type-Options "nosniff"
I am a software engineer and a linguist. I hold a bachelors degree in Middle Eastern Studies from the University of Utah, a Master’s degree in linguistics from Francisco Marroquín University in Guatemala City and working on a double doctorate degree in Archaeology and Mathematics.
Over my career, I have had the opportunity to work on projects for some of the most recognized brands on the planet. Brands like Marriott Hotels, Microsoft, Ashland Chemical, Capital One Credit Cards, Cadbury Schweppes, GE and more. This has given me an in-depth understanding of my client's challenges as they grow. I know how to get a company from startup to maturity with technology. My specialties are in E-commerce(specifically Magento), process automation, and security.