From a371c169c45dbd14ad3c465f8b7314b14c4ed8cb Mon Sep 17 00:00:00 2001 From: mh Date: Tue, 22 Feb 2011 22:59:51 +0100 Subject: add STS header in default ssl config --- files/include.d/CentOS/ssl_defaults.inc | 3 +++ 1 file changed, 3 insertions(+) (limited to 'files/include.d/CentOS') diff --git a/files/include.d/CentOS/ssl_defaults.inc b/files/include.d/CentOS/ssl_defaults.inc index b57cbb9..c1ef0be 100644 --- a/files/include.d/CentOS/ssl_defaults.inc +++ b/files/include.d/CentOS/ssl_defaults.inc @@ -142,3 +142,6 @@ SetEnvIf User-Agent ".*MSIE.*" \ # compact non-error SSL logfile on a virtual host basis. CustomLog logs/ssl_request_log \ "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" + +# set STS Header +Header add Strict-Transport-Security "max-age=15768000" -- cgit v1.2.3