bastian/deploy_home
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

CU-cwkb6h Updates from Mozilla Observatory scan

Browse Source
This commit is contained in:
Bastian de Byl
2020-10-02 22:21:53 -04:00
parent 1e395b150c
commit 40c28e8e8e
4 changed files with 21 additions and 29 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
ansible/roles/http/files/nginx/nginx.conf
View File

@@ -34,11 +34,6 @@ http {
# client_max_body_size 2k;
# large_client_header_buffers 2 1k;
add_header X-Frame-Options SAMEORIGIN;
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";
add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com; img-src 'self' data: https://www.google-analytics.com; style-src 'self' 'unsafe-inline'; font-src 'self'; frame-src 'none'; object-src 'none'";
limit_req_zone $binary_remote_addr zone=one:10m rate=10r/s;
include /etc/nginx/sites-enabled/*.conf;