projects / ansible.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
use Content-Security-Policy instead of old X-Frame-Options
[ansible.git] / roles / apache / templates / security.conf
diff --git a/roles/apache/templates/security.conf b/roles/apache/templates/security.conf
index adefdd8a77ba8de51ba56d49fed068c584abcc6f..9334c367c889e83453b38fb12c0902e4206e96a0 100644 (file)
--- a/roles/apache/templates/security.conf
+++ b/roles/apache/templates/security.conf
@@ -59,7 +59,7 @@ Header set X-Content-Type-Options: "nosniff"
 # site as frames. This defends against clickjacking attacks.
 # Requires mod_headers to be enabled.
 #
-Header set X-Frame-Options: "sameorigin"
+Header add Content-Security-Policy "frame-ancestors 'self'"
 
 
 # vim: syntax=apache ts=4 sw=4 sts=4 sr noet
Ansible playbooks for my servers