maketank/Froxlor
2
0
Fork 0
Code Pull Requests Releases Activity

set max-age for Strict-Transport-Security header to >180days, thx to priority

Browse Source 
Signed-off-by: Michael Kaufmann (d00p) <d00p@froxlor.org>
This commit is contained in:
Michael Kaufmann (d00p)
2014-12-06 19:47:27 +01:00
parent e64846b2c1
commit afe2041e94
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/init.php
View File

@@ -41,7 +41,7 @@ header("X-Frame-Options: DENY");
// If Froxlor was called via HTTPS -> enforce it for the next time // If Froxlor was called via HTTPS -> enforce it for the next time
if (isset($_SERVER['HTTPS']) && (strtolower($_SERVER['HTTPS']) != 'off')) { if (isset($_SERVER['HTTPS']) && (strtolower($_SERVER['HTTPS']) != 'off')) {
header("Strict-Transport-Security: max-age=500"); header("Strict-Transport-Security: max-age=15768000");
} }
// Internet Explorer shall not guess the Content-Type, see: // Internet Explorer shall not guess the Content-Type, see: