Improve web security
Follow OWASP standards and Mozilla Observatory security recommendations by implementing the follow edits to the Apache/Nginx web server config
1. HSTS header
2. X-Content-Type-Options header
3. X-Frame-Options (XFO) header
4. X-XSS-Protection header
5. Content Security Policy (CSP) and CORS policy
1
vote
![](https://secure.gravatar.com/avatar/3cfbb4dddaefbf2b3fc6c7975aa3bde5?size=40&default=https%3A%2F%2Fassets.uvcdn.com%2Fpkg%2Fadmin%2Ficons%2Fuser_70-6bcf9e08938533adb9bac95c3e487cb2a6d4a32f890ca6fdc82e3072e0ea0368.png)