Title: Security Header Recomendations
Last modified: September 26, 2017

---

# Security Header Recomendations

 *  Resolved [neotechnomad](https://wordpress.org/support/users/neotechnomad/)
 * (@neotechnomad)
 * [8 years, 9 months ago](https://wordpress.org/support/topic/security-header-recomendations/)
 * On the Sucuri dashboard:
 * Recomendations
 * >  Security Header: X-XSS-Protection Missing
   >  We did not find the recommended
   > security header for XSS Protection on your site. Security Header: X-Frame-Options
   > We did not find the recommended security header for ClickJacking Protection
   > on your site. Security Header: X-Content-Type nosniff We did not find the recommended
   > security header to prevent Content Type sniffing on your site.
 * On all the sites I admin, I have these headers in the respective .htaccess files
   yet, Sucuri is not recognizing they exist.

Viewing 1 replies (of 1 total)

 *  [yorman](https://wordpress.org/support/users/yorman/)
 * (@yorman)
 * [8 years, 9 months ago](https://wordpress.org/support/topic/security-header-recomendations/#post-9532338)
 * The plugin caches this information for a couple of minutes _(20 minutes in the
   latest version)_ and SiteCheck for 48 hours. Assuming that you are seeing these
   recommendations even after the cache has been flushed, I would say the headers
   were either implemented incorrectly or your hosting provider has disabled the
   mod_headers module, at least outside the virtual host.
 * However, if you are completely sure that the headers are being applied correctly,
   just send me an email to `[removed]` _(email removed to avoid spam)_ with the
   URL to the websites that you are having problems with and I will check them manually
   to see what is the problem.
 * Marking as resolved, as this is an edge case that is only affecting one user.
   I will continue handling this ticket in private with the original poster via 
   emails. If anyone else is having the same problems feel free to jump into the
   conversation and I will help.

Viewing 1 replies (of 1 total)

The topic ‘Security Header Recomendations’ is closed to new replies.

 * ![](https://ps.w.org/sucuri-scanner/assets/icon-256x256.png?rev=2875755)
 * [Sucuri Security - Auditing, Malware Scanner and Security Hardening](https://wordpress.org/plugins/sucuri-scanner/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/sucuri-scanner/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/sucuri-scanner/)
 * [Active Topics](https://wordpress.org/support/plugin/sucuri-scanner/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/sucuri-scanner/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/sucuri-scanner/reviews/)

 * 1 reply
 * 2 participants
 * Last reply from: [yorman](https://wordpress.org/support/users/yorman/)
 * Last activity: [8 years, 9 months ago](https://wordpress.org/support/topic/security-header-recomendations/#post-9532338)
 * Status: resolved