mirror of
https://github.com/imthenachoman/How-To-Secure-A-Linux-Server.git
synced 2025-12-06 17:22:53 +01:00
6ec31b6344
There is not any section about web servers. So you should probably create a section about web servers.
1.4 KiB
1.4 KiB
Secure nginx
Global resource: webdock.io
-
server_tokens off; -
Content Security Policy Reference
add_header Content-Security-Policy "default-src 'self';" always; -
add_header X-Frame-Options SAMEORIGIN always; -
add_header X-Xss-Protection "1; mode=block" always; -
add_header Referrer-Policy "strict-origin" always; -
add_header Permissions-Policy "geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()"; -
add_header X-Content-Type-Options nosniff always;