Custom Headers

bdevroey

New member
Joined
Dec 1, 2018
Messages
4
Hi,

I want to implent global http headers on directadmin + Litespeed + lsphp

Code:
* Header always set Content-Security-Policy "default-src https: data: 'unsafe-inline' 'unsafe-eval'"
* Header always set X-Frame-Options "SAMEORIGIN"
* Header always set X-Xss-Protection "1; mode=block"
* Header always set X-Content-Type-Options "nosniff"

Any idea how to do this correctly without removing this after updating stuff?

Kind regards.
Bart
 

bdevroey

New member
Joined
Dec 1, 2018
Messages
4
Solved

Hi,

I want to implent global http headers on directadmin + Litespeed + lsphp

Code:
* Header always set Content-Security-Policy "default-src https: data: 'unsafe-inline' 'unsafe-eval'"
* Header always set X-Frame-Options "SAMEORIGIN"
* Header always set X-Xss-Protection "1; mode=block"
* Header always set X-Content-Type-Options "nosniff"

Any idea how to do this correctly without removing this after updating stuff?

Kind regards.
Bart

Just minutes before your answer i found what the problem was.
Include httpd conf option was turned off in litespeedadmin :(

it's working fine now!
 
Top