==== X-Frame Options ====
<code>nano /etc/apache/sites-available/default-ssl.conf</code>
<code>
<VirtualHost *:443>
...
Header always set X-Frame-Options "DENY"
...
</VirtualHost>
</code>