diff options
| author | mischa <mischa@rx.high5.nl> | 2019-03-18 22:42:34 +0100 |
|---|---|---|
| committer | mischa <mischa@rx.high5.nl> | 2019-03-18 22:42:34 +0100 |
| commit | 11f19eb7bc860630de70e35171c9d6d251920724 (patch) | |
| tree | 30c63fb3af4ac1f3d08beeeaf516e8cc286f723d /lighttpd.conf | |
| parent | 32e404dd7d09446a8d07da7b47ba5795f187b33e (diff) | |
added security headers
Diffstat (limited to 'lighttpd.conf')
| -rw-r--r-- | lighttpd.conf | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/lighttpd.conf b/lighttpd.conf index 411bcf5..e4bae8b 100644 --- a/lighttpd.conf +++ b/lighttpd.conf @@ -28,7 +28,11 @@ $SERVER["socket"] == ":443" { ssl.cipher-list = "EECDH+AESGCM:EDH+AESGCM:AES128+EECDH:AES128+EDH" ssl.dh-file = "/usr/local/etc/ssl/certs/dhparam.pem" ssl.ec-curve = "secp384r1" - setenv.add-response-header = ("Strict-Transport-Security" => "max-age=31536000; includeSubdomains") + setenv.add-response-header = ( + "Strict-Transport-Security" => "max-age=31536000; includeSubdomains", + "X-Frame-Options" => "DENY", + "X-Content-Type-Options" => "nosniff" + ) } server.username = "www" |