Added in MSIE8 and Mozilla Firefox 3.6.9, Apple Safari 4, IE8, and Google Chrome 2 are several mechanisms to defend against cross-domain forgeries.
Supported Values:
X-FRAME-OPTIONS: DENY
X-FRAME-OPTIONS: SAMEORIGIN
You can explicitly set this value for ApacheHTTP in the httpd.conf file, your .htaccess files or code it into the page(s) by the application itself.
This is a concept I had forgotten about until recently, it can often serve as a simple means of code obfuscation and is also sometimes referred to as “Decimal Address”.
Some background:
As such, you can use the following as equivalents:
REFERENCES:
I just wrote about the TLD, so this naturally follows:
A SLD includes the TLD name and further identifies the owning organization of a URL.
Second-level domains can be divided into further levels. These subdomains sometimes represent different computers within an organization, but are many times the same machine with different aliases.
Examples:
www.giantgeek.com
mail.giantgeek.com
TLD = .com
SLD = giantgeek.com
Subdomains = www.gianteek.com & mail.giantgeek.com
NOTE: Refer to HTTP/1.1 for details on how IP addresses, routing and webservers are impacted by this.
Interesting enough, some one character SLD’s do exist, x.com for example.
References:
Cheers!
I occasionally get this question, as many technical people don’t fully understand it.
A TLD is ‘actually” the last section of a URL (owned by the domain registrars themselves).
Examples:
You can find a full list of TLD’s here:
Various other TLD’s have been proposed through the years, here are a few common ones (that are in various states of approval or implementation):
References:
Cheers!