|
@@ -35,7 +35,9 @@ server {
|
|
|
add_header X-XSS-Protection "1; mode=block";
|
|
add_header X-XSS-Protection "1; mode=block";
|
|
|
add_header X-Robots-Tag none;
|
|
add_header X-Robots-Tag none;
|
|
|
add_header X-Download-Options noopen;
|
|
add_header X-Download-Options noopen;
|
|
|
|
|
+ add_header X-Frame-Options "SAMEORIGIN" always;
|
|
|
add_header X-Permitted-Cross-Domain-Policies none;
|
|
add_header X-Permitted-Cross-Domain-Policies none;
|
|
|
|
|
+ add_header Referrer-Policy strict-origin;
|
|
|
|
|
|
|
|
index index.php index.html;
|
|
index index.php index.html;
|
|
|
|
|
|
André Peters