-
Notifications
You must be signed in to change notification settings - Fork 19
Expand file tree
/
Copy pathhttpd headers file
More file actions
23 lines (18 loc) · 809 Bytes
/
httpd headers file
File metadata and controls
23 lines (18 loc) · 809 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
<IfModule headers_module>
#
# Avoid passing HTTP_PROXY environment to CGI's on this or any proxied
# backend servers which have lingering "httpoxy" defects.
# 'Proxy' request header is undefined by the IETF, not listed by IANA
#
RequestHeader unset Proxy early
# CSP Header
#Header set Content-Security-Policy "default-src 'none'; script-src 'self'; connect-src 'self'; font-src 'self'; img-src 'self'; style-src 'self' 'unsafe-inline';"
# XSS Auditor
#Header set X-XSS-Protection "0"
#Header set X-XSS-Protection "1; report=http://127.0.0.1/XSS/report.php"
# CORS
#Header set Access-Control-Allow-Origin "*"
# ClickJAcking
#Header set X-Frame-Options "DENY"
#Header set Content-Security-Policy "frame-ancestors 'none';"
</IfModule>