SEO Glossary: Rel Noopener Noreferrer

 

Short & sweet: What is rel noopener noreferrer?

Rel noopener and rel noreferrer are two link attributes. A rel attribute can be used with external links to provide information about the relation (rel for short) between the source page and the linked page. The noopener attribute increases the security of links, while the noreferrer attribute hides the origin of a link. Both attributes can be combined together to rel noopener noreferrer.

 

rel attribute Noopener: Close JavaScript security vulnerability

The rel attribute Noopener serves to equalize a security hole in JavaScript. To understand how this works, let's first explain how to call a page via a link:

  • Users visit a website A and read a text on one of the subpages. They find a link in the text to further content on another website B and click on it.
  • The operator of website A wants to offer added value to the users by linking the content of website B and therefore sets the link, but he does not want to lose his users. Therefore, he uses the following command for the link: target="_blank".
  • This command tells the browser to open the link to the linked website B in a new browser tab. The advantage for the operator of website A here is that his page still remains open in the previous tab and users are more likely to return to his website.
  • However, when opening the second tab, a security hole opens up. This is because the browsers work with the following JavaScript property or command: [window.opener]. Unfortunately, this JavaScript property is a gateway for hackers.
  • The hackers could redirect users to fake websites by using the simple command [window.open.location] and specifying a fake URL. In addition, the hackers could gain access to the source code of website A and manipulate it, which could render the website inoperable.

 

This lack of security problem occurs with external links where the target="_blank" command is used to open a linked page in a new browser tab. For an external link that is opened in the same browser tab as the tab of website A, this security deficit does not occur.

 

Consequently, all website owners and SEO experts who equip the anchor tags of external links with the command target="_blank" are called upon to use the rel noopener attribute. Here is an example of how to set the rel noopener attribute in the HTML language:

 

<a href=“https://www.timospecht.de/“ target=“_blank“ rel=“noopener“>

 

rel noopener not only increases the security of one's own website, but also protects one's own website visitors from damage caused by hacker intrusions via [window.open.location] and wrong URLs. It is one of the most important security aspects when setting external links in link building. For all internal links and especially for those external links where the linked page does not open in a new tab of the browser, on the other hand, rel noopener does not need to be used.

 

For existing websites that have external links with the target="_blank" command but without the rel noopener attribute, an adjustment is required: Subsequently, all external links must be equipped with rel noopener. Doing this for all links usually results in an enormous effort. For some content management systems (CMS), such as the WordPress system, plugins have been developed that allow HTML attributes such as rel noopener to be applied retrospectively. An example of such a plugin for WordPress is the plugin "Add Target Fixer".

 

 

In a free SEO strategy talk, we uncover untapped potential and develop a strategy to help you become more successful on Google. 

 

 

Anchor tags with rel attribute noreferrer: disguise the origin of the link

Normally, website B, which receives a link from website A, can check the origin of the link - wants to mean: The operator of website B is informed about where users find his website from. However, if the operator of website A sets the rel noreferrer attribute in the tag for the link to website B, the operator of the other website can no longer see the origin of the link; instead of a URL of website A, for example, he gets the note "(direct) / (none)" displayed in Google Analytics.

The rel noreferrer attribute is to be used when operators of linked websites should not know from which website they are linked to. There is no known case where you should hide the origin of the link from website operators, but rel noreferrer was introduced just in case. How to use rel noreferrer correctly:

 

<a href=“https://www.timospecht.de/“ target=“_blank“ rel=“noreferrer“>

 

For the majority of external links, the use of the rel noreferrer attribute is even undesirable. Especially in affiliate marketing, where website operators set affiliate links to other websites and receive a commission when new customers are successfully marketed, the use of the rel noreferrer attribute is completely pointless. This is because the affiliates need to know among themselves where the customers are coming from in order to correctly allocate the commission payments.

 

 

Register now and receive regular tips from the experts. 

 

 

Combination of different HTML attributes: noopener, noreferrer, nofollow and others

It is allowed to combine different attributes. Although some SEO agencies and SEO experts combine the attributes rel noopener and rel noreferrer and use them in the anchor tag as rel noopener noreferrer, this combination is mostly meaningless. The reason for this is simple: Because there is no meaningful purpose for rel noreferrer, there is no purpose for the combination rel noopener noreferrer.

 

It is different with the attribute combination of noreferrer and nofollow. Combining these two attributes is recommended when the external link should be opened in a new tab of the browser and when the linked web page should not be visited by the crawlers. The latter - preventing crawling - is in fact the effect of using the nofollow attribute.

 

I am known from big media such as Stern, GoDaddy, Onpulson & breakfast television and have already worked with over 100+ well-known clients successful on Google. 

Google rating

Based on 185 reviews

Trustpilot rating

Based on 100 reviews

 

 

Conclusion on rel noopener noreferrer

The HTML attribute rel noopener noreferrer makes sense in the rarest of cases, because there is no known meaningful use for the attribute noreferrer. The situation is different, however, with the rel noopener attribute alone: this is highly useful because it eliminates a security hole in JavaScript and increases both security for users and security for website operators. The rel noopener attribute should only be used for outbound links that open in a new browser tab. A combination of the HTML attribute rel noopener with the attribute rel nofollow is possible and recommended in some cases.

Table of contents:

Table of Contents

Share the post

SEO Glossary

More glossary articles

Further contributions

Interesting blog articles

Specht GmbH: Your SEO & SEA specialists

Secure your free strategy meeting now