nginx/host: enable HSTS

This commit is contained in:
Aminda Suomalainen 2015-05-12 18:41:24 +03:00
parent 8e433e3660
commit cbbd9dcf2c

View File

@ -31,8 +31,7 @@ server {
ssl_prefer_server_ciphers on;
# Enable this if your want HSTS (recommended)
# HSTS = access only using HTTPS
# add_header Strict-Transport-Security max-age=15768000;
add_header Strict-Transport-Security max-age=15768000;
# OCSP Stapling ---
# fetch OCSP records from URL in ssl_certificate and cache them