Apache protection for XSS

Over the last couple weeks we have received reports regarding cross-site scripting vulnerabilities on our sites.  As part of working to remediate these issues, the question came up about what level of protection we have (or can get) at the Apache layer.  

Could you please suggest how apache can help with preventing XSS?

Thank you
jayatallenAsked:
Who is Participating?
 
ahoffmannConnect With a Mentor Commented:
add ModSecurity module and configure it with CRS (Core Rule Set)
start here http://www.modsecurity.org/
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.