From cb387bed883997c28b86281809ad05990329efd9 Mon Sep 17 00:00:00 2001
From: schererleander <leander@schererleander.de>
Date: Fri, 30 May 2025 06:27:00 +0200
Subject: hardened nginx

---
 hosts/vps/configuration.nix | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'hosts')

diff --git a/hosts/vps/configuration.nix b/hosts/vps/configuration.nix
index ee6cf70..0030da6 100644
--- a/hosts/vps/configuration.nix
+++ b/hosts/vps/configuration.nix
@@ -56,10 +56,10 @@
           https   "max-age=31536000; includeSubdomains; preload";
       }
       add_header Strict-Transport-Security $hsts_header;
-      add_header Content-Security-Policy "script-src 'self'; object-src 'none'; base-uri 'none';" always;
-      add_header 'Referrer-Policy' 'same-origin' always;
+      #add_header Content-Security-Policy "script-src 'self'; object-src 'none'; base-uri 'none';" always;
+      add_header 'Referrer-Policy' 'same-origin';
       add_header X-Frame-Options DENY;
-      add_header X-Content-Type-Options nosniff always;
+      add_header X-Content-Type-Options nosniff;
     '';
 
     virtualHosts."schererleander.de" = {
-- 
cgit v1.3.1