diff options
author | Jose Luis Duran <jlduran@users.noreply.github.com> | 2016-01-06 00:57:04 -0200 |
---|---|---|
committer | Jose Luis Duran <jlduran@users.noreply.github.com> | 2016-01-06 00:57:04 -0200 |
commit | 657cb0dbf682834c1237d914234dc7eb45e2db3c (patch) | |
tree | 0c0f3eadb4850167b517afb04a7cae7f1cd6f876 /src/etc/inc/system.inc | |
parent | b7eb0ead89d530123147b30e78545316e59adbb9 (diff) | |
download | pfsense-657cb0dbf682834c1237d914234dc7eb45e2db3c.zip pfsense-657cb0dbf682834c1237d914234dc7eb45e2db3c.tar.gz |
Remove preload token from HSTS header
Please see the documentation on how to include your domain in the
preload lists:
https://hstspreload.appspot.com
Diffstat (limited to 'src/etc/inc/system.inc')
-rw-r--r-- | src/etc/inc/system.inc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/etc/inc/system.inc b/src/etc/inc/system.inc index 847879d..3890f72 100644 --- a/src/etc/inc/system.inc +++ b/src/etc/inc/system.inc @@ -1273,7 +1273,7 @@ EOD; $nginx_config .= "\t\tssl_protocols TLSv1 TLSv1.1 TLSv1.2;\n"; $nginx_config .= "\t\tssl_ciphers \"EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH\";\n"; $nginx_config .= "\t\tssl_prefer_server_ciphers on;\n"; - $nginx_config .= "\t\tadd_header Strict-Transport-Security \"max-age=31536000; preload\";\n"; + $nginx_config .= "\t\tadd_header Strict-Transport-Security \"max-age=31536000\";\n"; $nginx_config .= "\t\tadd_header X-Content-Type-Options nosniff;\n"; $nginx_config .= "\t\tssl_session_tickets off;\n"; $nginx_config .= "\t\tssl_stapling on;\n"; |