From cbbd9dcf2cea7648269c7aba268ae67da9e81771 Mon Sep 17 00:00:00 2001
From: Mikaela Suomalainen <mikaela+git@mikaela.info>
Date: Tue, 12 May 2015 18:41:24 +0300
Subject: [PATCH] nginx/host: enable HSTS

---
 etc/nginx/sites-enabled/host | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/etc/nginx/sites-enabled/host b/etc/nginx/sites-enabled/host
index cdd57ddf..1a562445 100644
--- a/etc/nginx/sites-enabled/host
+++ b/etc/nginx/sites-enabled/host
@@ -31,8 +31,7 @@ server {
     ssl_prefer_server_ciphers on;
 
     # Enable this if your want HSTS (recommended)
-    # HSTS = access only using HTTPS
-    # add_header Strict-Transport-Security max-age=15768000;
+    add_header Strict-Transport-Security max-age=15768000;
 
     # OCSP Stapling ---
     # fetch OCSP records from URL in ssl_certificate and cache them