Perspectives-Server icon indicating copy to clipboard operation
Perspectives-Server copied to clipboard

Published 20 hours ago verified publisher icon danwent

Implement secure browsing settings

Open daveschaefer opened this issue 11 years ago • 1 comments

Dan Callahan has a good presentation on basic webserver security settings here: http://pyvideo.org/video/2315/quick-wins-for-better-website-security

We should enable the applicable ones for notary servers. This means:

Render: 1. Enable XSS Protection 2. Set the Content Security Policy 3. Set XFrame options

Adding SSL is covered in #19. Once SSL is enabled we can also add Strict Transport Security.

daveschaefer avatar Sep 11 '13 03:09 daveschaefer

done it im my NGinx config

netsafe avatar Jun 20 '15 15:06 netsafe