Matrix-Mirrors/matrix.grapheneos.org
1
0
Fork 0
mirror of https://github.com/GrapheneOS/matrix.grapheneos.org.git synced 2024-06-26 10:42:07 +00:00
Code Issues Packages Projects Releases Wiki Activity

disable legacy X-XSS-Protection feature

Browse Source
This commit is contained in:
Daniel Micay 2021-12-10 04:31:03 -05:00
parent 27934d8d58
commit 91cb36d7a0
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
nginx/snippets/security-headers.conf
View File

@ -7,5 +7,5 @@ add_header Cross-Origin-Embedder-Policy "require-corp" always;
# obsolete when client system time is correct
add_header Expect-CT "enforce, max-age=63072000" always;
# obsolete and replaced with strong Content-Security-Policy
add_header X-XSS-Protection "1; mode=block" always;
# obsolete, unsafe and replaced with strong Content-Security-Policy
add_header X-XSS-Protection "0" always;