WP no-iFrames (Content Protection) is a simple, yet effective iframe breaking plugin that protects your site content from being embedded into other si
WP no-iFrames (Content Protection) is a simple, yet effective iframe breaking plugin that will protect your site content from being embedded into other sites - effectively defending you against clickjacking attacks.
This lightweight plugin will add the Header always append X-Frame-Options SAMEORIGIN rule to your root .htaccess file - where the SAMEORIGIN rule will allow embeds only from YOUR site and prevent embeds from ANY other domains.
The X-Frame-Options headers are however, available in 3 flavors (should you wish to not use the DENY rule):
The SAMEORIGIN rule is simply replaced by either one of the aforementioned headers and can be done directly in your root .htaccess file
This is a lightweight plugin - simply install and leave. Try it for yourself!
Requires: 3.0 or higher
Compatible up to: 4.2.11
Last Updated: 2 years ago
Active Installs: 500+
0 of 1 support threads in the last two months have been marked resolved.
Got something to say? Need help?