This new blog serves as a guide to security best practice regarding HTTP headers. We will shed a light on the list of OWASP recommended headers as well as a few commonly encountered headers. At the end of this post we’ll give a quick explanation on how to implement custom headers in the major HTTP server software.