[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[GNUnet-SVN] [taler-deployment] branch master updated: try with extra 's
|
From: |
gnunet |
|
Subject: |
[GNUnet-SVN] [taler-deployment] branch master updated: try with extra 'security' headers |
|
Date: |
Sat, 09 Sep 2017 11:39:45 +0200 |
This is an automated email from the git hooks/post-receive script.
grothoff pushed a commit to branch master
in repository deployment.
The following commit(s) were added to refs/heads/master by this push:
new 280408a try with extra 'security' headers
280408a is described below
commit 280408a25ce8a858d2dc05c8b4a70bd900df190c
Author: Christian Grothoff <address@hidden>
AuthorDate: Sat Sep 9 11:39:37 2017 +0200
try with extra 'security' headers
---
etc/nginx/conf.d/talerssl | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/etc/nginx/conf.d/talerssl b/etc/nginx/conf.d/talerssl
index cd703ec..4d8b451 100644
--- a/etc/nginx/conf.d/talerssl
+++ b/etc/nginx/conf.d/talerssl
@@ -7,7 +7,7 @@ ssl_protocols TLSv1.2 TLSv1.1 TLSv1;
ssl_ciphers 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH';
add_header Strict-Transport-Security "max-age=63072000; includeSubDomains;
preload";
-#add_header X-XSS-Protection "1; mode=block";
-#add_header X-Frame-Options "SAMEORIGIN";
-#add_header X-Content-Type-Options "nosniff";
-#add_header Content-Security-Policy "default-src 'self'";
+add_header X-XSS-Protection "1; mode=block";
+add_header X-Frame-Options "SAMEORIGIN";
+add_header X-Content-Type-Options "nosniff";
+add_header Content-Security-Policy "default-src 'self'; script-src 'self'
'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src
'self'";
--
To stop receiving notification emails like this one, please contact
address@hidden
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [GNUnet-SVN] [taler-deployment] branch master updated: try with extra 'security' headers,
gnunet <=