bundles/nginx: set default X-Frame-Options to SAMEORIGIN

2020-08-18 15:07:43 +02:00 · 2020-08-18 15:07:43 +02:00 · d7862918a6
commit d7862918a6
parent 9f760f9a88
2 changed files with 1 additions and 2 deletions
--- a/bundles/nginx/files/site_template
+++ b/bundles/nginx/files/site_template
@ -22,7 +22,7 @@ server {

 % if not do_not_set_content_security_headers:
    add_header Referrer-Policy same-origin;
-    add_header X-Frame-Options "DENY";
+    add_header X-Frame-Options "SAMEORIGIN";
    add_header X-Content-Type-Options nosniff;
 % endif

--- a/nodes/htz/ex42-1048908.py
+++ b/nodes/htz/ex42-1048908.py
@ -151,7 +151,6 @@ nodes['htz.ex42-1048908'] = {
                },
                'vliedel.random.franzi.business': {},
                'webmail.mx0.kunbox.net': {
-                    'do_not_set_content_security_headers': True,
                    'index': 'index.php',
                    'php': True,
                },