summaryrefslogtreecommitdiffstats
path: root/debian/config-dir/conf-available/csp.conf
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-07 15:17:09 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-07 15:17:09 +0000
commit3a791603b825f41130028d256d58bbec105cc170 (patch)
treebbb21cc2deb7cca2a04135596f1693a52f0349ff /debian/config-dir/conf-available/csp.conf
parentSetting ServerSignature to Off in security.conf. (diff)
downloadapache2-3a791603b825f41130028d256d58bbec105cc170.tar.xz
apache2-3a791603b825f41130028d256d58bbec105cc170.zip
Setting Content-Security-Policy to "default-src https: 'self'; style-src https: 'self' 'unsafe-inline'".
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'debian/config-dir/conf-available/csp.conf')
-rw-r--r--debian/config-dir/conf-available/csp.conf7
1 files changed, 7 insertions, 0 deletions
diff --git a/debian/config-dir/conf-available/csp.conf b/debian/config-dir/conf-available/csp.conf
new file mode 100644
index 0000000..ccbeadf
--- /dev/null
+++ b/debian/config-dir/conf-available/csp.conf
@@ -0,0 +1,7 @@
+# /etc/apache2/conf-available/csp.conf
+
+<IfModule mod_ssl.c>
+ <IfModule mod_headers.c>
+ Header always set Content-Security-Policy "default-src https: 'self'; style-src https: 'self' 'unsafe-inline'"
+ </IfModule>
+</IfModule>
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-08 16:24:44 +0000