remove optional headers

linuxserver · Nov 27, 2024 · 18707c1 · 18707c1
1 parent 635b2e9
commit 18707c1
Showing 1 changed file with 0 additions and 9 deletions.
diff --git a/romm.subdomain.conf.sample b/romm.subdomain.conf.sample
@@ -42,14 +42,5 @@ server {
         set $upstream_proto http;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
-        # Hide version
-        server_tokens off;
-
-        # Security headers
-        add_header X-Frame-Options "SAMEORIGIN" always;
-        add_header X-Content-Type-Options "nosniff" always;
-        add_header X-XSS-Protection "1; mode=block" always;
-        add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
-        add_header Referrer-Policy "no-referrer-when-downgrade" always;
     }
 }