Skip to content

Commit fd02a9a

Browse files
peldaxpeldax
committed
jp obrázek, security hlavičky
1 parent bfd0171 commit fd02a9a

File tree

4 files changed

+58
-1
lines changed

4 files changed

+58
-1
lines changed

css/image.jpg

1.01 MB
Loading

css/style.css

+1-1
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@ html,
1717
body {
1818
font-family: 'Roboto', sans-serif;
1919
height: 100%;
20-
background-image: url("image.png");
20+
background-image: url("image.jpg");
2121
background-position: center;
2222
background-size: cover;
2323
}

server/.htaccess

+2
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,2 @@
1+
Order allow, deny
2+
Deny from all

server/000-infinityloop.conf

+55
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,55 @@
1+
ServerTokens Prod
2+
ServerSignature Off
3+
4+
<VirtualHost *:80>
5+
ServerAdmin webmaster@localhost
6+
ServerName infinityloop.cz
7+
ServerAlias www.infinityloop.cz
8+
9+
DocumentRoot /var/www/html/infinityloop
10+
11+
ErrorLog ${APACHE_LOG_DIR}/error.log
12+
CustomLog ${APACHE_LOG_DIR}/access.log combined
13+
14+
<Directory /var/www/html/infinityloop>
15+
Options FollowSymLinks
16+
AllowOverride All
17+
</Directory>
18+
19+
RewriteEngine On
20+
RewriteCond %{SERVER_NAME} =www.infinityloop.cz [OR]
21+
RewriteCond %{SERVER_NAME} =infinityloop.cz
22+
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
23+
</VirtualHost>
24+
25+
<VirtualHost *:443>
26+
Protocols h2 http/1.1
27+
28+
ServerAdmin webmaster@localhost
29+
ServerName infinityloop.cz
30+
ServerAlias www.infinityloop.cz
31+
32+
DocumentRoot /var/www/html/infinityloop
33+
34+
ErrorLog ${APACHE_LOG_DIR}/error.log
35+
CustomLog ${APACHE_LOG_DIR}/access.log combined
36+
37+
<Directory /var/www/html/infinityloop>
38+
Options FollowSymLinks
39+
AllowOverride All
40+
</Directory>
41+
42+
Include /etc/letsencrypt/options-ssl-apache.conf
43+
SSLCertificateFile /etc/letsencrypt/live/infinityloop.cz/fullchain.pem
44+
SSLCertificateKeyFile /etc/letsencrypt/live/infinityloop.cz/privkey.pem
45+
46+
Header always set Feature-Policy "accelerometer 'none'; camera 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; payment 'none'; usb 'none'"
47+
Header always set Content-Security-Policy "default-src 'none'; style-src 'self'; img-src 'self'; script-src 'none'; object-src 'none'; base-uri 'self'; frame-ancestors 'none'; form-action 'self'"
48+
Header always set X-XSS-Protection 1;mode=block
49+
Header always set X-Content-Type-Options nosniff
50+
Header always set X-Frame-Options SAMEORIGIN
51+
Header always set Referrer-Policy "no-referrer"
52+
Header always set X-Powered-By "infinityloop.cz"
53+
Header always set Strict-Transport-Security "max-age=31536000;" "expr=%{HTTPS} == 'on'"
54+
Header always set Expect-CT enforce,max-age=2592000
55+
</VirtualHost>

0 commit comments

Comments
 (0)