summaryrefslogtreecommitdiff
path: root/etc/nginx/conf.d/talerssl
diff options
context:
space:
mode:
authorFlorian Dold <florian.dold@gmail.com>2016-09-05 17:48:11 +0200
committerFlorian Dold <florian.dold@gmail.com>2016-09-05 17:48:11 +0200
commitb41bf073798ef58015d0af77e8f2d60028e8d4b5 (patch)
tree9e7ed2d5db27a179439fc0117c758aa932ac72f4 /etc/nginx/conf.d/talerssl
parentc2774e1fc5914577876e42c115790c58c7b1e4f4 (diff)
downloaddeployment-b41bf073798ef58015d0af77e8f2d60028e8d4b5.tar.gz
deployment-b41bf073798ef58015d0af77e8f2d60028e8d4b5.tar.bz2
deployment-b41bf073798ef58015d0af77e8f2d60028e8d4b5.zip
temporarily switch off web security stuff
Diffstat (limited to 'etc/nginx/conf.d/talerssl')
-rw-r--r--etc/nginx/conf.d/talerssl8
1 files changed, 4 insertions, 4 deletions
diff --git a/etc/nginx/conf.d/talerssl b/etc/nginx/conf.d/talerssl
index 016566e..cd703ec 100644
--- a/etc/nginx/conf.d/talerssl
+++ b/etc/nginx/conf.d/talerssl
@@ -7,7 +7,7 @@ ssl_protocols TLSv1.2 TLSv1.1 TLSv1;
ssl_ciphers 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH';
add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload";
-add_header X-XSS-Protection "1; mode=block";
-add_header X-Frame-Options "SAMEORIGIN";
-add_header X-Content-Type-Options "nosniff";
-add_header Content-Security-Policy "default-src 'self'";
+#add_header X-XSS-Protection "1; mode=block";
+#add_header X-Frame-Options "SAMEORIGIN";
+#add_header X-Content-Type-Options "nosniff";
+#add_header Content-Security-Policy "default-src 'self'";