Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

Increase HSTS max age to one year

Browse source 
The HSTS preload list requires this now: https://hstspreload.org/
This commit is contained in:
Till Maas 2018-02-07 12:42:36 +01:00
parent 7edc8430dc
commit 8f7acb0dde
16 changed files with 35 additions and 35 deletions
Download patch file Download diff file Expand all files Collapse all files

2
roles/distgit/pagure/templates/z_pagure.conf
View file

@ -11,7 +11,7 @@ WSGIDaemonProcess pagureproc user=pagure group=packager maximum-requests=1000 di
# SSLEngine on
# SSLProtocol all -SSLv2 -SSLv3
# # Use secure TLSv1.1 and TLSv1.2 ciphers
# Header always add Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"
# Header always add Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
# SSLCertificateFile /etc/pki/tls/certs/pagure.io.cert
# SSLCertificateChainFile /etc/pki/tls/certs/pagure.io.intermediate.cert