diff options
| author | Martina Pietruschka | 2016-03-05 11:08:02 +0000 |
|---|---|---|
| committer | Martina Pietruschka | 2016-03-05 11:08:02 +0000 |
| commit | 1235e092d359efffb24d86b6b7d84d71a87af18e (patch) | |
| tree | c56334ed6c605cd405405d59f503e982b06f775e /nginx-location.conf | |
| parent | 8a35299267415cc1013dc6fa11c2ed941e947cad (diff) | |
| download | aur-1235e092d359efffb24d86b6b7d84d71a87af18e.tar.gz | |
2.1.2-2 fixed x-frame-option to sameorigin
Diffstat (limited to 'nginx-location.conf')
| -rw-r--r-- | nginx-location.conf | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/nginx-location.conf b/nginx-location.conf index 4779d6875321..87ca2e5f7f07 100644 --- a/nginx-location.conf +++ b/nginx-location.conf @@ -21,7 +21,7 @@ ## [WARNING] The following header states that the browser should only communicate ## with your server over a secure connection for the next 24 months. add_header Strict-Transport-Security max-age=63072000; - add_header X-Frame-Options DENY; + add_header X-Frame-Options SAMEORIGIN; add_header X-Content-Type-Options nosniff; # HIDDEN FILES AND FOLDERS |