diff options
| author | mischa <mischa@rx.high5.nl> | 2019-03-23 11:09:54 +0100 |
|---|---|---|
| committer | mischa <mischa@rx.high5.nl> | 2019-03-23 11:09:54 +0100 |
| commit | 71b43a372bbe2cc39ce02bea4adc47ff246016d4 (patch) | |
| tree | abc30d15643d6c316d37a2e96f13b4a3d318c2b9 | |
| parent | 4efc8a5468cb18244f9b1afd2ac9884784fa3d8f (diff) | |
updated security headers
| -rw-r--r-- | lighttpd.conf | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/lighttpd.conf b/lighttpd.conf index 25ba938..da4ab07 100644 --- a/lighttpd.conf +++ b/lighttpd.conf @@ -30,8 +30,11 @@ $SERVER["socket"] == ":443" { ssl.ec-curve = "secp384r1" setenv.add-response-header = ( "Strict-Transport-Security" => "max-age=31536000; includeSubdomains", - "X-Frame-Options" => "DENY", - "X-Content-Type-Options" => "nosniff" + "X-Frame-Options" => "SAMEORIGIN", + "X-XSS-Protection" => "1; mode=block", + "X-Content-Type-Options" => "nosniff", + "Referrer-Policy" => "no-referrer", + "Feature-Policy" => "geolocation none; midi none; notifications none; push none; sync-xhr none; microphone none; camera none; magnetometer none; gyroscope none; speaker none; vibrate none; fullscreen self; payment none; usb none;" ) } |