Official NixOS Wiki

Nginx: Difference between revisions

← Older editNewer edit →
imported>TheHedgehog0
VisualWikitext
imported>Dmo84
m minor wording
imported>TheHedgehog0
m Remove X-XSS-Protection header suggestion(per MDN it's not supported anymore) https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection#browser_compatibility
Line 254: Line 254:
       # Prevent injection of code in other mime types (XSS Attacks)
       # Prevent injection of code in other mime types (XSS Attacks)
       add_header X-Content-Type-Options nosniff;
       add_header X-Content-Type-Options nosniff;
      # Enable XSS protection of the browser.
      # May be unnecessary when CSP is configured properly (see above)
      add_header X-XSS-Protection "1; mode=block";


       # This might create errors
       # This might create errors
Retrieved from "https://wiki.nixos.org/wiki/Nginx"