diff options
author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-05-07 02:05:53 +0000 |
---|---|---|
committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-05-07 02:05:53 +0000 |
commit | 0992980dbdcfb9505e39689f3de42dc5427f8a84 (patch) | |
tree | f6f344d778b2aac01fa8c439b8e306dca85256e7 /debian/config-dir/conf-available | |
parent | Setting ServerSignature to Off in security.conf. (diff) | |
download | apache2-0992980dbdcfb9505e39689f3de42dc5427f8a84.tar.xz apache2-0992980dbdcfb9505e39689f3de42dc5427f8a84.zip |
Setting Content-Security-Policy to "default-src https: 'self'; style-src https: 'self' 'unsafe-inline'".
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to '')
-rw-r--r-- | debian/config-dir/conf-available/csp.conf | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/debian/config-dir/conf-available/csp.conf b/debian/config-dir/conf-available/csp.conf new file mode 100644 index 0000000..ccbeadf --- /dev/null +++ b/debian/config-dir/conf-available/csp.conf @@ -0,0 +1,7 @@ +# /etc/apache2/conf-available/csp.conf + +<IfModule mod_ssl.c> + <IfModule mod_headers.c> + Header always set Content-Security-Policy "default-src https: 'self'; style-src https: 'self' 'unsafe-inline'" + </IfModule> +</IfModule> |