Merge pull request #1214 from owncloud/LukasReschke-patch-1

Add includeSubDomains + preload recommendation
2026-01-03 02:09:45 +07:00 · 2015-06-15 12:03:44 -07:00
parent c0b5d576f6 6de4952a6b
commit e21079a291
1 changed files with 7 additions and 2 deletions
--- a/admin_manual/configuration_server/harden_server.rst
+++ b/admin_manual/configuration_server/harden_server.rst
@@ -119,10 +119,15 @@ VirtualHost file:

  <VirtualHost *:443>
     ServerName cloud.owncloud.com
-     Header always add Strict-Transport-Security "max-age=15768000"
+     Header always add Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"
  </VirtualHost>

-It shall be noted that this requires that the ``mod_headers`` extension to be installed.
+Be aware that above policy will also apply for all subdomains, if you don't
+have HTTPS properly configured on all subdomains you mut remove the ``includeSubdomains``
+part.
+
+Furthermore it shall be noted that this requires that the ``mod_headers`` 
+extension is installed.

 Proper SSL configuration
 ************************