mirror of
				https://github.com/zulip/zulip.git
				synced 2025-10-26 01:24:02 +00:00 
			
		
		
		
	nginx: Set X-XSS-Protection: 1; mode=block.
Signed-off-by: Anders Kaseorg <anders@zulipchat.com>
This commit is contained in:
		
				
					committed by
					
						 Tim Abbott
						Tim Abbott
					
				
			
			
				
	
			
			
			
						parent
						
							79c215626e
						
					
				
				
					commit
					15d68c40dd
				
			| @@ -5,3 +5,4 @@ add_header Strict-Transport-Security max-age=15768000 always; | ||||
| add_header X-Frame-Options DENY always; | ||||
|  | ||||
| add_header X-Content-Type-Options nosniff; | ||||
| add_header X-XSS-Protection "1; mode=block"; | ||||
|   | ||||
| @@ -10,6 +10,7 @@ WARNING: no certificate subject alternative name matches | ||||
|   Strict-Transport-Security: max-age=15768000 | ||||
|   X-Frame-Options: DENY | ||||
|   X-Content-Type-Options: nosniff | ||||
|   X-XSS-Protection: 1; mode=block | ||||
| Location: /login/ [following] | ||||
| Reusing existing connection to localhost:443. | ||||
|   HTTP/1.1 200 OK | ||||
| @@ -20,6 +21,7 @@ Reusing existing connection to localhost:443. | ||||
|   Strict-Transport-Security: max-age=15768000 | ||||
|   X-Frame-Options: DENY | ||||
|   X-Content-Type-Options: nosniff | ||||
|   X-XSS-Protection: 1; mode=block | ||||
| Length: 6361 (6.2K) [text/html] | ||||
| Saving to: ‘/tmp/index.html’ | ||||
|  | ||||
|   | ||||
		Reference in New Issue
	
	Block a user