Apache2 settings for optimum security - /etc/apache2/apache2.conf
| <Directory /var/www/> | |
| Options FollowSymLinks | |
| AllowOverride None | |
| Require all granted | |
| Header always append X-Frame-Options SAMEORIGIN | |
| Header set X-XSS-Protection "1; mode=block" | |
| Header edit Set-Cookie ^(.*)$ $1;HttpOnly;Secure | |
| FileETag None | |
| RewriteEngine On | |
| RewriteCond %{THE_REQUEST} !HTTP/1\.1$ | |
| RewriteRule .* - [F] | |
| deny from all | |
| </Directory> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment