From f341cf7024720cd39b70d8d9b1a04e8d366db45b Mon Sep 17 00:00:00 2001
From: Konstantin Haase <konstantin.mailinglists@googlemail.com>
Date: Tue, 24 May 2011 12:23:22 +0200
Subject: [PATCH] add links to more infos

---
 rack-protection/lib/rack/protection/frame_options.rb | 1 +
 rack-protection/lib/rack/protection/xss_header.rb    | 1 +
 2 files changed, 2 insertions(+)

diff --git a/rack-protection/lib/rack/protection/frame_options.rb b/rack-protection/lib/rack/protection/frame_options.rb
index 2bc573ba..4f2ff686 100644
--- a/rack-protection/lib/rack/protection/frame_options.rb
+++ b/rack-protection/lib/rack/protection/frame_options.rb
@@ -6,6 +6,7 @@ module Rack
     # Prevented attack::   Clickjacking
     # Supported browsers:: Internet Explorer 8, Firefox 3.6.9, Opera 10.50,
     #                      Safari 4.0, Chrome 4.1.249.1042 and later
+    # More infos::         https://developer.mozilla.org/en/The_X-FRAME-OPTIONS_response_header
     #
     # Sets X-Frame-Options header to tell the browser avoid embedding the page
     # in a frame.
diff --git a/rack-protection/lib/rack/protection/xss_header.rb b/rack-protection/lib/rack/protection/xss_header.rb
index 93187d31..17eeee04 100644
--- a/rack-protection/lib/rack/protection/xss_header.rb
+++ b/rack-protection/lib/rack/protection/xss_header.rb
@@ -5,6 +5,7 @@ module Rack
     ##
     # Prevented attack::   Non-permanent XSS
     # Supported browsers:: Internet Explorer 8 and later
+    # More infos::         http://blogs.msdn.com/b/ie/archive/2008/07/01/ie8-security-part-iv-the-xss-filter.aspx
     #
     # Sets X-XSS-Protection header to tell the browser to block attacks.
     #