diff --git a/docker/web/nginx.conf b/docker/web/nginx.conf index 0b6fb89..b48c582 100644 --- a/docker/web/nginx.conf +++ b/docker/web/nginx.conf @@ -50,7 +50,15 @@ add_header X-Robots-Tag none; add_header X-Download-Options noopen; add_header X-Permitted-Cross-Domain-Policies none; + add_header Referrer-Policy no-referrer; + + # Remove X-Powered-By, which is an information leak + fastcgi_hide_header X-Powered-By; + # Remove X-Powered-By, which is an information leak + fastcgi_hide_header X-Powered-By; + + # Path to the root of your installation root /var/www/html; location = /robots.txt {