Muhammad Rehan Saeed

**[Muhammad Rehan Saeed](https://rehansaeed.com)** commented on **2018-06-13 09:31:06** > This is fun and I'm excited to see it all, but I'm still working on .net 4 applications and see that NWebsec...

**WBClark** commented on **2018-06-13 18:14:38** We fully intend to migrate to Core and the boilerplate has had a big part in our meeting our security targets while learning .net and...

**[Muhammad Rehan Saeed](https://rehansaeed.com)** commented on **2018-06-24 13:23:57** > We fully intend to migrate to Core and the boilerplate has had a big part in our meeting our security targets while...

**[Biagio Paruolo](http://twitter.com/RedConsultingIT)** commented on **2015-05-21 07:27:26** .NET 4.5.x support CORS out of the box.

**[Anna](http://ontimesheet.com)** commented on **2016-03-20 19:20:15** Your documentation and the template refers to ASP 4.5 runtime - this in itself is a big security issue, since Microsoft has upgraded to 4.6.1...

**[Muhammad Rehan Saeed](https://rehansaeed.com)** commented on **2016-03-21 10:13:22** > Your documentation and the template refers to ASP 4.5 runtime - this in itself is a big security issue, since Microsoft has...

**Val** commented on **2016-10-18 16:03:05** Hi Rehan, Great article thanks! I think you have a typo in `X-Frame-Options` definition, it should be vice versa: - `SameOrigin` - Specifies that the...

**[Muhammad Rehan Saeed](https://rehansaeed.com)** commented on **2016-11-04 09:48:49** > Hi Rehan, Great article thanks! > > I think you have a typo in `X-Frame-Options` definition, it should be vice versa: >...

**Rich** commented on **2018-09-06 16:44:10** Can you explain what the advantages of this are over just adding the headers to the `customheaders` section of the web.config file.

**[Muhammad Rehan Saeed](https://rehansaeed.com)** commented on **2018-09-21 09:47:04** > Can you explain what the advantages of this are over just adding the headers to the `customheaders` section of the web.config file....