Remove preload token from HSTS header

Please see the documentation on how to include your domain in the preload lists: https://hstspreload.appspot.com
author: Jose Luis Duran <jlduran@users.noreply.github.com> 2016-01-06 00:57:04 -0200
committer: Jose Luis Duran <jlduran@users.noreply.github.com> 2016-01-06 00:57:04 -0200
commit: 657cb0dbf682834c1237d914234dc7eb45e2db3c (patch)
tree: 0c0f3eadb4850167b517afb04a7cae7f1cd6f876 /src/etc/inc
parent: b7eb0ead89d530123147b30e78545316e59adbb9 (diff)
download: pfsense-657cb0dbf682834c1237d914234dc7eb45e2db3c.zip
pfsense-657cb0dbf682834c1237d914234dc7eb45e2db3c.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/src/etc/inc/system.inc b/src/etc/inc/system.inc
index 847879d..3890f72 100644
--- a/src/etc/inc/system.inc
+++ b/src/etc/inc/system.inc
@@ -1273,7 +1273,7 @@ EOD;
 		$nginx_config .= "\t\tssl_protocols   TLSv1 TLSv1.1 TLSv1.2;\n";
 		$nginx_config .= "\t\tssl_ciphers \"EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH\";\n";
 		$nginx_config .= "\t\tssl_prefer_server_ciphers       on;\n";
-		$nginx_config .= "\t\tadd_header Strict-Transport-Security \"max-age=31536000; preload\";\n";
+		$nginx_config .= "\t\tadd_header Strict-Transport-Security \"max-age=31536000\";\n";
 		$nginx_config .= "\t\tadd_header X-Content-Type-Options nosniff;\n";
 		$nginx_config .= "\t\tssl_session_tickets off;\n";
 		$nginx_config .= "\t\tssl_stapling on;\n";
author	Jose Luis Duran <jlduran@users.noreply.github.com>	2016-01-06 00:57:04 -0200
committer	Jose Luis Duran <jlduran@users.noreply.github.com>	2016-01-06 00:57:04 -0200
commit	657cb0dbf682834c1237d914234dc7eb45e2db3c (patch)
tree	0c0f3eadb4850167b517afb04a7cae7f1cd6f876 /src/etc/inc
parent	b7eb0ead89d530123147b30e78545316e59adbb9 (diff)
download	pfsense-657cb0dbf682834c1237d914234dc7eb45e2db3c.zip pfsense-657cb0dbf682834c1237d914234dc7eb45e2db3c.tar.gz