public
/
docker-automatic-nginx-letsencrypt
关注 1
点赞 0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
Compose files, instructions and extras for using my automatic proxy containers
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
20 提交
1 分支
分支: master
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 'master'
${ noResults }
docker-automatic-nginx-lets.../extra/security.conf

security.conf 603B
永久链接 文件历史 原始文件

1234567891011121314151617 
  1. # General security-related directives.

  2. 

  3. # Don't offer up information about the version of Nginx we use

  4. server_tokens      off;

  5. 

  6. # Don't allow other websites to present our content in a frame/iframe.

  7. # This mitigates clickjacking attacks.

  8. add_header         X-Frame-Options "SAMEORIGIN";

  9. 

  10. # Don't allow browsers to try and sniff content types. This prevents

  11. # malicious user-generated content being misinterpreted.

  12. add_header         X-Content-Type-Options "nosniff";

  13. 

  14. # Enable XSS protection, if browsers don't already have it enabled

  15. # by default.

  16. add_header         X-XSS-Protection "1; mode=block";