Howdy Folks,
As you have failed to guess,
What do I need to be careful off so no crook injects anything malicious on my site or on my visitors’ clientsides ?
Q1.
Which of these attributes, mentioned in the tutorial, do I need to add or ignore on my iFrames for the sake of preserving security so no holes popup ?
allow
allowfullscreen
height
loading
name
referrerpolicy
sandbox
src
srcdoc
width
Bear in mind, I won’t be using Javascript on my website or iFrame pages.
Only html, php and maybe css.
I know this is lame for security purpose:
[code]
<iframe src=”https://www.w3schools.com” title=”W3Schools Free Online Web Tutorials”>
</iframe>
And, as you have managed to guess correctly this time, the same questions also go for if I want to open iFrames to third party sites and I do not want to jeopordise security on my end, visitor’s end or the site’s end to where I open the iFrames to. I must have security intact. Do not want other sites getting harmed or my website visitors getting harmed by internet malicious crooks due to my insecured iFrame codes and find myself getting sued left & right.
How would you code the iFrames on both cases ?