Security Kit (SecKit) provides with various options to improve security of web application. Currently, modern browsers support a lot of techniques to mitigate common web vulnerabilites like XSS, CSRF, Clickjacking. However, these techniques requires server-side implementation. Thus, SecKit provides websites with easy and flexible way to implement them. Additionally, module has options to fix HTML injection issue, which can be exploited via Drupal 6.x core Upload module.
- Extract archive with module to contributed modules directory.
- Enable it on Modules page.
- Settings of module are available on http://www.example.com/admin/config/system/seckit
More information about features can be found on project page http://drupal.org/project/seckit
If you experience any problems with SecKit, please, report issues on http://drupal.org/project/issues/seckit
Alex Rodionov https://github.com/p0deje/seckit