Permalink
Browse files

local/nginx: fix referer policy

  • Loading branch information...
rtucker committed Feb 1, 2018
1 parent d178927 commit 26bd82ddba00c030a93642d1f810e9c12275831c
Showing with 2 additions and 1 deletion.
  1. +2 −1 local/nginx/vulpine.club
@@ -50,8 +50,9 @@ server {

# strict-origin-when-cross-origin is probably a better setting, but
# it isn't supported by chrome, so going straight for the killshot
add_header Referrer-Policy "no-referrer";
#add_header Referrer-Policy "no-referrer";
#add_header Referrer-Policy "strict-origin-when-cross-origin";
add_header Referrer-Policy "same-origin";

# TLS 4eva
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";

0 comments on commit 26bd82d

Please sign in to comment.