summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--lighttpd.conf6
1 files changed, 5 insertions, 1 deletions
diff --git a/lighttpd.conf b/lighttpd.conf
index 411bcf5..e4bae8b 100644
--- a/lighttpd.conf
+++ b/lighttpd.conf
@@ -28,7 +28,11 @@ $SERVER["socket"] == ":443" {
ssl.cipher-list = "EECDH+AESGCM:EDH+AESGCM:AES128+EECDH:AES128+EDH"
ssl.dh-file = "/usr/local/etc/ssl/certs/dhparam.pem"
ssl.ec-curve = "secp384r1"
- setenv.add-response-header = ("Strict-Transport-Security" => "max-age=31536000; includeSubdomains")
+ setenv.add-response-header = (
+ "Strict-Transport-Security" => "max-age=31536000; includeSubdomains",
+ "X-Frame-Options" => "DENY",
+ "X-Content-Type-Options" => "nosniff"
+ )
}
server.username = "www"