Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
Apache2 settings for optimum security - /etc/apache2/apache2.conf
<Directory /var/www/>
Options FollowSymLinks
AllowOverride None
Require all granted
Header always append X-Frame-Options SAMEORIGIN
Header set X-XSS-Protection "1; mode=block"
Header edit Set-Cookie ^(.*)$ $1;HttpOnly;Secure
FileETag None
RewriteEngine On
RewriteCond %{THE_REQUEST} !HTTP/1\.1$
RewriteRule .* - [F]
deny from all
</Directory>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment