Looking for some help. I have someone using domain masking to clone a site belonging to me. I have inserted:
<script type="text/javascript">
if (parent.frames.length > 0) {
parent.location.href = self.document.location
}
</script>
into my own header but it is still managing to pull the content from my site and display it in an iframe. The website is wordpress that I am using.
I inserted:
Header append X-FRAME-OPTIONS "DENY"
into the htacess as well. Neither one is working. Any other way they could be doing this?
Can you identify the source address of the interloper? Unless it’s a widely distributed system stealing your content, it sounds like it would be easier to simply block requests from their subnets at the network layer. This may lead to a game of whack-a-mole if they’re able to move the process around, but would definitely increase the barrier for them.