MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity

chg: Added some sane default headers to the apache .conf files 

- protection against clickjacking
- nosniff

- as reported by Or Hanuka (PALANTIR)
pull/2600/head
iglocska 2017-10-26 16:37:36 +02:00
parent f0020112d6
commit 11b7e8e808
5 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
INSTALL/apache.22.misp.ssl
View File

@ -18,4 +18,6 @@
ErrorLog /var/log/apache2/misp.local_error.log
CustomLog /var/log/apache2/misp.local_access.log combined
ServerSignature Off
Header set X-Content-Type-Options nosniff
Header set X-Frame-Options DENY
</VirtualHost>

2
INSTALL/apache.24.misp.ssl
View File

@ -17,4 +17,6 @@
ErrorLog /var/log/apache2/misp.local_error.log
CustomLog /var/log/apache2/misp.local_access.log combined
ServerSignature Off
Header set X-Content-Type-Options nosniff
Header set X-Frame-Options DENY
</VirtualHost>

2
INSTALL/apache.misp.centos6
View File

@ -19,4 +19,6 @@
ErrorLog /var/log/httpd/misp.local_error.log
CustomLog /var/log/httpd/misp.local_access.log combined
ServerSignature Off
Header set X-Content-Type-Options nosniff
Header set X-Frame-Options DENY
</VirtualHost>

4
INSTALL/apache.misp.centos7
View File

@ -20,5 +20,7 @@
LogLevel warn
ErrorLog /var/log/httpd/misp.local_error.log
CustomLog /var/log/httpd/misp.local_access.log combined
ServerSignature Off
ServerSignature Off
Header set X-Content-Type-Options nosniff
Header set X-Frame-Options DENY
</VirtualHost>

2
INSTALL/apache.misp.ubuntu
View File

@ -13,4 +13,6 @@
ErrorLog /var/log/apache2/misp.local_error.log
CustomLog /var/log/apache2/misp.local_access.log combined
ServerSignature Off
Header set X-Content-Type-Options nosniff
Header set X-Frame-Options DENY
</VirtualHost>