The HTTP headers X-Content-Type-Options acts as a marker that indicates the MIME-types headers in the content types headers should not be changed to the server. This header was introduced in the Internet Explorer 8 of Microsoft. This header block the content sniffing (non-executable MIME type into executable MIME type). After that, all the other browsers also introduce the X-Content-Type-Options, and their MIME sniffing algorithms were less aggressive.
Directives: There is a single directive accepted by X-Content-Type-Options header.
Supported Browsers: The browsers compatible with x-content-type-options header are listed below:
- Google Chrome
- Internet Explorer
- HTTP headers | Access-Control-Expose-Headers
- HTTP headers | Access-Control-Request-Headers
- HTTP headers | Access-Control-Allow-Headers.
- HTTP Headers | TE
- HTTP headers
- HTTP headers | Age
- HTTP headers | Via
- HTTP headers | Allow
- HTTP headers | Expect
- HTTP headers | SourceMap
- HTTP headers | If-Unmodified-Since
- HTTP headers | Expect-CT
- HTTP headers | Digest
- HTTP headers | Retry-After
- HTTP headers | expires
If you like GeeksforGeeks and would like to contribute, you can also write an article using contribute.geeksforgeeks.org or mail your article to email@example.com. See your article appearing on the GeeksforGeeks main page and help other Geeks.
Please Improve this article if you find anything incorrect by clicking on the "Improve Article" button below.