nginx/host: enable HSTS

2015-05-12 18:41:24 +03:00 · 2015-05-12 18:41:24 +03:00 · cbbd9dcf2c
parent 8e433e3660
commit cbbd9dcf2c
1 changed files with 1 additions and 2 deletions
--- a/etc/nginx/sites-enabled/host
+++ b/etc/nginx/sites-enabled/host
@ -31,8 +31,7 @@ server {
    ssl_prefer_server_ciphers on;

    # Enable this if your want HSTS (recommended)
-    # HSTS = access only using HTTPS
-    # add_header Strict-Transport-Security max-age=15768000;
+    add_header Strict-Transport-Security max-age=15768000;

    # OCSP Stapling ---
    # fetch OCSP records from URL in ssl_certificate and cache them