From 36b9e9e91ceec3e6c9c43908de4b81679e2118e5 Mon Sep 17 00:00:00 2001
From: Pierre Ozoux <pierre@ozoux.net>
Date: Fri, 20 Apr 2018 09:43:15 +0200
Subject: [PATCH] Remove some headers for security

---
 templates/haproxy.cfg.tmpl | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/templates/haproxy.cfg.tmpl b/templates/haproxy.cfg.tmpl
index cf6748f..e2e7ea4 100644
--- a/templates/haproxy.cfg.tmpl
+++ b/templates/haproxy.cfg.tmpl
@@ -32,6 +32,12 @@ frontend https-in
 mode http
   bind *:443 ssl crt /etc/haproxy/certs alpn h2,http/1.1
   reqadd X-Forwarded-Proto:\ https
+  rspidel Server
+  rspidel X-Powered-By
+  rspidel X-Frame-Options
+  rspidel X-XSS-Protection
+  rspidel X-Frame-Options
+  rspidel X-Content-Type-Options
   rspadd X-Frame-Options:\ SAMEORIGIN # OR DENY
   rspadd X-XSS-Protection:\ 1;\ mode=block
   rspadd X-Content-Type-Options:\ nosniff
-- 
GitLab