more secure headers

2025-09-06 10:40:44 +00:00 · 2019-08-19 12:47:55 +02:00
parent 6db6fb8c9b
commit cb59013ef8
2 changed files with 7 additions and 0 deletions
--- a/nginx.conf
+++ b/nginx.conf
@@ -2,6 +2,12 @@ server {
 	listen       80;
 	server_name  _;

+	add_header Content-Security-Policy "default-src 'self'; report-uri csp@nicco.io";
+	add_header X-Content-Type-Options "nosniff";
+	add_header X-Frame-Options "deny";
+	add_header Strict-Transport-Security "max-age=31536000";
+	add_header Referrer-Policy "origin";
+
 	location / {
 		root   /usr/share/nginx/html;
 		try_files $uri /index.html;