preload added to ssl.conf
This commit is contained in:
parent
7a0e282dd0
commit
025b203b19
|
@ -35,6 +35,9 @@ keepalive_timeout 300s; # up from 75 secs default
|
||||||
#add_header Strict-Transport-Security "max-age=31536000;";
|
#add_header Strict-Transport-Security "max-age=31536000;";
|
||||||
# This version tells browsers to treat all subdomains the same as this site and to load exclusively over HTTPS
|
# This version tells browsers to treat all subdomains the same as this site and to load exclusively over HTTPS
|
||||||
#add_header Strict-Transport-Security "max-age=31536000; includeSubDomains;";
|
#add_header Strict-Transport-Security "max-age=31536000; includeSubDomains;";
|
||||||
|
# This version tells browsers to treat all subdomains the same as this site and to load exclusively over HTTPS
|
||||||
|
# Recommend is also to use preload service
|
||||||
|
#add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload;";
|
||||||
|
|
||||||
# This default SSL certificate will be served whenever the client lacks support for SNI (Server Name Indication).
|
# This default SSL certificate will be served whenever the client lacks support for SNI (Server Name Indication).
|
||||||
# Make it a symlink to the most important certificate you have, so that users of IE 8 and below on WinXP can see your main site without SSL errors.
|
# Make it a symlink to the most important certificate you have, so that users of IE 8 and below on WinXP can see your main site without SSL errors.
|
||||||
|
|
Loading…
Reference in New Issue