Skip to content

Commit

Permalink
PMM-1571 add CWE-693, CWE-16, CWE-524,CWE-525 headers
Browse files Browse the repository at this point in the history
  • Loading branch information
@delgod
delgod committed Oct 13, 2017
1 parent eef6ce1 commit 9786c21
Showing 1 changed file with 9 additions and 0 deletions.
9 changes: 9 additions & 0 deletions nginx-ssl.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,15 @@ ssl_stapling on;
ssl_stapling_verify on;
resolver 8.8.8.8 8.8.4.4 valid=300s;
resolver_timeout 3s;

# HSTS
add_header Strict-Transport-Security "max-age=63072000; includeSubDomains";

# CWE-693, CWE-16
add_header X-Frame-Options DENY;
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";

# CWE-524, CWE-525
add_header Cache-control "no-store";
add_header Pragma "no-cache";

0 comments on commit 9786c21

Please sign in to comment.