Skip to content

Instantly share code, notes, and snippets.

@peasead
Created April 9, 2017 16:18
Show Gist options
  • Save peasead/04390d6f85a5f9eb09b9d5e4e30493a9 to your computer and use it in GitHub Desktop.
Save peasead/04390d6f85a5f9eb09b9d5e4e30493a9 to your computer and use it in GitHub Desktop.
#/etc/nginx/conf.d/webapp.conf
server {
listen 80;
server_tokens off;
add_header Strict-Transport-Security "max-age=31536000; includeSubdomains";
add_header X-Frame-Options DENY;
add_header X-XSS-Protection "1; mode=block";
add_header X-Content-Type-Options nosniff;
server_name C-NAME;
return 301 http://webserver:port;
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment