Log in / Register

Get the most out of your Centmin Mod LEMP stack

Become a Member

Master Branch fix inc/wpsetup.inc for ssl vhost duplicate security headers

Discussion in 'Centmin Mod Github Commits' started by eva2000, Jul 24, 2018.

Previous Thread Next Thread

Loading...

Jul 24, 2018 #1
eva2000 Administrator Staff Member

58,893

12,490

113

May 24, 2014

Brisbane, Australia

Ratings:

+19,122

Local Time:

10:51 AM

Nginx 1.31.x

MariaDB 10.x/11.4+/12.3+
fix inc/wpsetup.inc for ssl vhost duplicate security headers

for centmin.sh menu option 22 when used with nginx https vhost, the domain.com.ssl.conf vhost config has duplicate set of these 4 headers below. Removing the 2nd set of 4 lines

#add_header X-Frame-Options SAMEORIGIN;
add_header X-Xss-Protection "1; mode=block" always;
add_header X-Content-Type-Options "nosniff" always;
#add_header Referrer-Policy "strict-origin-when-cross-origin";

Continue reading...

Centmin Mod Github Master branch

Master branch is where most recent commits are made as at May 24, 2015.

Branch: https://github.com/centminmod/centminmod

Commit History: https://github.com/centminmod/centminmod/commits/master

Previous Thread Next Thread

Loading...

(You must log in or sign up to reply here.)