From c5e55e8bc0587fa962c8bda3c51a8f1a7b9e2173 Mon Sep 17 00:00:00 2001
From: cypherbits <info@avanix.es>
Date: Sat, 2 May 2020 18:11:35 +0200
Subject: [PATCH] add more security headers

---
 chat.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/chat.php b/chat.php
index c438f42..fac10d7 100644
--- a/chat.php
+++ b/chat.php
@@ -3261,6 +3261,9 @@ function send_headers(){
 	header('Expires: 0');
 	header('Referrer-Policy: no-referrer');
 	header('Content-Security-Policy: referrer never');
+    header('X-Content-Type-Options: nosniff');
+    header('X-Frame-Options: sameorigin');
+    header('X-XSS-Protection: 1; mode=block');
 	if($_SERVER['REQUEST_METHOD']==='HEAD'){
 		exit; // headers sent, no further processing needed
 	}