my OWA server has suffered from click jacking and I know I have to add HTTP header
X-FRAME-OPTIONS:SAMEORIGIN
to the respond, but I don't know exactly how I can do it.
Please if any one can provide me a way to solve this issue, I'll be grateful.
The following steps helped me to solve this problem, Here are the steps:
1- Open IIS Manager and navigate to the level you want to manage.
2- In Features View, double-click HTTP Response Headers.
3- On the HTTP Response Headers page, in the Actions pane, click Add.
4- In the Add Custom HTTP Response Header dialog box, add a header called "X-FRAME-OPTIONS", and assign it's value to "SAMEORIGIN".
5- Click OK.
For more information, Please visit the following link: http://technet.microsoft.com/en-us/library/cc753133%28v=ws.10%29.aspx
Best Regards