blob: 3adf7feededd78010ed50897acae9957ca0f1a61 (
plain)
1
2
3
4
5
6
7
8
9
|
Options +Includes
XBitHack Full
Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains; preload"
Header set Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self'; font-src 'self';"
Header always append X-Frame-Options SAMEORIGIN
Header always set X-Content-Type-Options nosniff
Header always set Referrer-Policy "unsafe-url"
Header always set Permissions-Policy "geolocation=(self 'https://xhtml.club'), microphone=()"
|
