hardened nginx

author: schererleander <leander@schererleander.de> 2025-05-30 06:27:00 +0200
committer: schererleander <leander@schererleander.de> 2025-05-30 06:27:00 +0200
commit: cb387bed883997c28b86281809ad05990329efd9 (patch)
tree: b9fdc21a7dc138bc921df4229181cb1036c9656c
parent: 00256c5ca303701dcb797019b46e6f2083c5d1c2 (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/hosts/vps/configuration.nix b/hosts/vps/configuration.nix
index ee6cf70..0030da6 100644
--- a/hosts/vps/configuration.nix
+++ b/hosts/vps/configuration.nix
@@ -56,10 +56,10 @@
           https   "max-age=31536000; includeSubdomains; preload";
       }
       add_header Strict-Transport-Security $hsts_header;
-      add_header Content-Security-Policy "script-src 'self'; object-src 'none'; base-uri 'none';" always;
-      add_header 'Referrer-Policy' 'same-origin' always;
+      #add_header Content-Security-Policy "script-src 'self'; object-src 'none'; base-uri 'none';" always;
+      add_header 'Referrer-Policy' 'same-origin';
       add_header X-Frame-Options DENY;
-      add_header X-Content-Type-Options nosniff always;
+      add_header X-Content-Type-Options nosniff;
     '';
 
     virtualHosts."schererleander.de" = {
author	schererleander <leander@schererleander.de>	2025-05-30 06:27:00 +0200
committer	schererleander <leander@schererleander.de>	2025-05-30 06:27:00 +0200
commit	cb387bed883997c28b86281809ad05990329efd9 (patch)
tree	b9fdc21a7dc138bc921df4229181cb1036c9656c
parent	00256c5ca303701dcb797019b46e6f2083c5d1c2 (diff)