From 00256c5ca303701dcb797019b46e6f2083c5d1c2 Mon Sep 17 00:00:00 2001
From: schererleander <leander@schererleander.de>
Date: Fri, 30 May 2025 06:25:28 +0200
Subject: hardened nginx

---
 hosts/vps/configuration.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'hosts/vps/configuration.nix')

diff --git a/hosts/vps/configuration.nix b/hosts/vps/configuration.nix
index d688cf9..ee6cf70 100644
--- a/hosts/vps/configuration.nix
+++ b/hosts/vps/configuration.nix
@@ -57,7 +57,7 @@
       }
       add_header Strict-Transport-Security $hsts_header;
       add_header Content-Security-Policy "script-src 'self'; object-src 'none'; base-uri 'none';" always;
-      add_header 'Referrer-Policy' same-origin always;
+      add_header 'Referrer-Policy' 'same-origin' always;
       add_header X-Frame-Options DENY;
       add_header X-Content-Type-Options nosniff always;
     '';
-- 
cgit v1.3.1